privacy policy

1) Information on the collection of personal data and contact options of the responsible party

1.1 We are pleased that you are visiting our website and thank you for your interest. Below we will tell you how we process your personal data when you use our website. Personal data is all data that can be used to personally identify you.

1.2 According to the Regulation on the protection of natural persons with regard to the processing of personal data (GDPR), “DMC GmbH” is the data controller on this website. The data controller is a natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data.

1.3 For security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries to the person responsible), SSL or TLS encryption is used on this website. TLS encryption. You can recognize an encrypted connection by the character string "https://" and the lock symbol in the browser line.

2) Data collection when visiting our website

If you use our website for information purposes only, i.e. do not register or provide us with information in any other way, we only collect the data that your browser transmits to our server (so-called "server log files"). When you visit our website, we collect the following data, which is technically necessary to display the website for you:
  • The website you visited
  • Visitor date and time
  • Amount of data sent (in bytes)
  • The origin/referrer of the page you visited
  • Browser used
  • Operating system used
  • IP address used (if applicable: in anonymized form)
The processing is carried out in accordance with Art. 6 (1) (f) GDPR on the basis of our legitimate interest in improving the stability and functionality of the website. The data will not be passed on or used for other purposes. However, we reserve the right to subsequently check the server log files if there are concrete indications of misuse.

3) Hosting service by shopify

We use the shop system of the service provider Shopify International Limited (address: Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland) ("Shopify") to host and display our online shop on the basis of processing on behalf of the provider. All data collected on our website is processed on Shopify's servers.
As part of the above Shopify service, the data may also be transferred to Shopify Inc. (address: 150 Elgin St, Ottawa, ON K2P 1L4, Canada), Shopify Data Processing (USA) Inc., Shopify Payments (USA) Inc. or Shopify (USA) Inc. for further processing on behalf of Shopify. If the data is transferred to Shopify Inc. in Canada, an adequate level of data protection is ensured by the adequacy decision of the European Commission.
For more information about Shopify’s privacy practices, please visit the following website: https://www.shopify.de/legal/datenschutz
Except as mentioned above, further processing on Shopify's servers will only take place within the limits described below.

4) Cookies

In order to make visiting our website more attractive and to enable the use of certain functions, we use so-called cookies on various pages. These are small text files that are stored on your device.
Some of the cookies we use are deleted after the end of the browser session (i.e. after you have closed your browser) (so-called session cookies). Other cookies remain stored on your device and enable us to recognize your browser when you visit again (so-called persistent cookies).
When cookies are set, certain user information such as browser and location data as well as IP address values ​​are collected and processed depending on individual circumstances. Persistent cookies are automatically deleted after a set period of time, which can vary depending on the cookie. You can find out the storage period of each cookie in the cookie settings overview of your web browser.
Some cookies are used to simplify the ordering process by storing preferences (e.g. remembering the contents of the virtual shopping cart for a later visit to the website).
If individual cookies used by us also process personal data, the processing is carried out either in accordance with Art. 6 (1) (b) GDPR to execute a contract or, if consent has been obtained, in accordance with Art. 6 (1) (a) GDPR or in accordance with Art. 6 (1) (f) GDPR to safeguard our legitimate interest in the optimal functionality of the website and in a customer-friendly and effective page visit design.
Please note that you can set your browser to inform you when cookies are placed and to decide individually whether you want to accept them or reject them in certain cases or in general. Each browser manages cookie settings in a different way. The help folder for each browser describes how you can change your cookie settings. You can find the cookies for the respective browser under the following links:
Please note that the functionality of our website may be limited if you do not accept cookies.

5) Contact

When you contact us (e.g. via a contact form or email), we collect personal data. In the respective contact form you can see which data we collect.
This data is stored and used exclusively to answer your inquiry, to contact you and for the associated technical administration. The legal basis for processing this data is our legitimate interest in answering your inquiry in accordance with Art. 6 (1) (f) GDPR.
If your contact serves to conclude a contract, the additional legal basis for processing is Art. 6 (1) (b) GDPR.
Your data will be deleted after your request has been processed. This is the case if the circumstances indicate that the question in question has been finally resolved and there are no conflicting statutory retention periods.

6) Data processing when opening a customer account and when executing a contract

In accordance with Art. 6 (1) (b) GDPR, we will continue to collect and process the personal data you provide if you provide us with personal data when concluding a contract or opening a customer account. You can see which data is collected from the respective input field.
You can delete your customer account at any time by sending a message to the responsible person's address stated above.
We store and use the data you provide to process the contract. After the contract has been fully processed or your customer account has been deleted, your data will be blocked for tax and commercial law reasons in accordance with the statutory retention periods and deleted after these periods have expired, unless you have expressly given your consent to the further use of your data or we reserve the right to continue to use the data in accordance with legal regulations.

7) Direct marketing using customer data

7.1 Registration for our email newsletter

If you sign up for our email newsletter, we will regularly send you information about our offers. The only mandatory information for sending the newsletter is your email address. Providing additional information is voluntary and will be used to contact you personally.
We use a so-called double opt-in procedure to send the newsletter. This means that we will only send you an email newsletter if you expressly confirm your consent to receive the newsletter. We will then send you a confirmation email in which you will be asked to confirm whether you would like to receive the newsletter in the future by clicking on a link.
By activating the confirmation link, you agree to the use of your personal data in accordance with Art. 6 (1) (a) GDPR. When you sign up for the newsletter, we save the IP address entered by your Internet service provider (ISP) as well as the registration date and time in order to be able to track potential misuse of your email address later.
The data we collect when you register for the newsletter will be used exclusively for the purpose of advertising via the newsletter. You can unsubscribe from the newsletter distribution at any time using the link provided in the newsletters or by sending a corresponding message to the person responsible named above. After unsubscribing, your email address will be immediately deleted from our newsletter distribution list unless you have expressly given your consent to the further use of your data or we reserve the right to use the data in other legally permissible ways, of which we will inform you in this declaration.

7.2 Sending e-mail newsletters to existing customers

If you have provided us with your email address when purchasing goods or services, we reserve the right to send you periodic email offers for goods or services similar to those you have already purchased.
According to Section 7 Paragraph 3 of the German Act Against Unfair Competition (UWG), we do not require your separate consent for this. In this respect, data processing is carried out exclusively on the basis of our legitimate interest in personalized direct advertising in accordance with Art. 6 (1) (f) GDPR.
If you object from the outset to your email address being used for this purpose, we will not send you any emails. You have the right to object to the use of your email address for the advertising purposes mentioned above at any time by contacting the person responsible named at the beginning of this declaration. You only have to pay the transmission fees according to the basic tariff. After receipt of your objection, the use of your email address for advertising purposes will be stopped immediately.

7.3 Sending the newsletter via Klaviyo

Our email newsletter is sent via the technology service provider »Klaviyo«, address: 225 Franklin St, Boston, MA 02110, USA ( http://www.klaviyo.com/ ), and we will pass on the data you provide when registering for the newsletter to this provider.
This transfer takes place in accordance with Art. 6 (1) (f) GDPR and corresponds to our legitimate interest in using an effective, secure and user-friendly newsletter system. Please note that your data is usually transferred to Klaviyo's servers in the USA and stored there.
Klaviyo uses this information to send the newsletter on our behalf. Klaviyo will not use the data of our newsletter recipients to contact them directly or to pass it on to third parties.
To protect your data in the United States, we have entered into a data processing agreement letter with Klaviyo, in which Klaviyo is obliged to protect our users' data, to process data on our behalf in accordance with its privacy policy, and in particular not to pass it on to third parties.
You can view Klaviyo’s privacy policy here: https://www.klaviyo.com/privacy

7.4 Notification of product availability by email

If we offer the opportunity to notify you by email about the availability of selected, temporarily unavailable products in our online store, you can sign up for our email notification service about the availability of products.
If you sign up for our product availability email notification service, we will send you a one-time email notification about the availability of the products you have selected. The only mandatory information required to send this notification is your email address. Providing other information is voluntary and may be used to contact you personally.
We use a so-called double opt-in procedure to send you this notification. This means that we will only send you such a notification if you expressly confirm to us that you wish to receive such a message. We will then send you a confirmation email asking you to confirm whether you wish to receive such a notification by clicking on the relevant link.
By activating the confirmation link, you agree to the use of your personal data in accordance with Art. 6 (1) (a) GDPR. If you sign up for our email notification service about the availability of products, we store the IP address entered by your Internet service provider (ISP) as well as the registration date and time in order to be able to track potential misuse of your email address later.
The data we collect when you sign up for our product availability email notification service is used solely to notify you of the availability of certain products in our online store. You can unsubscribe from our product availability email notification service at any time by sending a message to the person responsible mentioned above. After unsubscribing, your email address will be immediately deleted from our mailing list unless you have expressly given your consent to further use of your data or we reserve the right to use the data in other legally permissible ways, of which we will inform you in this statement.

8) Data processing during order processing

8.1 To process your order, we cooperate with the following service providers who support us in whole or in part in fulfilling the concluded contract. Certain personal data is transferred to these service providers in accordance with the following information.
The personal data we collect will be passed on to the freight forwarder responsible for the delivery as part of the contract processing, insofar as this is necessary for the delivery of the goods. If payment processing is required, we will pass on your payment data to the commissioned credit authority as part of the payment processing. If a payment service provider is used, we will expressly inform you of this below. The legal basis for the data transfer is Art. 6 Para. 1 lit. b GDPR.

8.2 In order to fulfil our contractual obligations to our customers, we cooperate with external shipping partners. We will only pass on your name, delivery address and (if necessary for delivery) your telephone number to our selected shipping partners for the delivery of goods in accordance with Art. 6 (1) (b) GDPR.

8.3 Use of payment service providers (payment services)

PayPal payment :

If you choose the PayPal payment method (address: 22 - 24 Boulevard Royal, L - 2449 Luxembourg), payment processing will be handled by PayPal. When the order is fulfilled, all payment data provided by you during the order process, such as name, address, contact information, order amount, payment card information (e.g. credit card number, expiration date, CVV code, etc., if applicable) and order details will be transferred to PayPal.

PayPal uses industry-standard technologies such as SSL encryption to ensure the security of data transmission and prevent theft and manipulation. After PayPal has received the payment data, it will review and process it to confirm your ability to pay and the legitimacy of the transaction. If necessary, in accordance with Art. 6 Para. 1 lit. f GDPR, some of the payment data will be transmitted to a credit institution to conduct a credit check and assess your credit risk, such as checking your credit profile and payment history. PayPal decides whether or not to approve the payment request based on the results of the credit check, which are related to the statistical probability of violations.

After payment processing, PayPal will send you and the merchant a payment confirmation informing you of the status of the transaction. If there are any problems with the transaction, such as payment errors or refund requests, PayPal will handle the matter in accordance with the established dispute resolution procedure to protect your rights and interests. For more information about PayPal's privacy practices, please visit their privacy policy page: https://www.paypal.com/de/webapps/mpp/ua/privacy .

Visa payment :

If you choose the Visa payment method, the payment will be processed through your linked Visa card. When placing an order, you will need to provide your Visa card information, including the card number, cardholder name, expiration date and security code. This information is transmitted to the payment gateway through a secure encryption channel, which then forwards the data to Visa for verification and approval. The payment gateway uses the TLS encryption protocol to ensure the confidentiality and integrity of the payment information during transmission. Visa will verify the validity of the card, available credit limit and risk of fraud, etc. If the verification is successful, Visa will approve the transaction and return the result to the payment gateway, which will then forward it to the merchant. After the transaction is completed, you will receive a transaction notification from the bank or Visa, and the transaction will also be listed in your bank statement. At the same time, the merchant will receive the payment confirmation to provide the corresponding goods or service.

Visa has a strict data protection policy and follows industry standards and laws to store and process data carefully and prevent loss, misuse and unauthorized disclosure. If you have any concerns about data security when paying with Visa, you can contact your card issuing bank or visit the official Visa website for more information.