Privacy Policy
The person responsible for data processing is:
Bidabadi GmbH
Brook, 9
20457 Hamburg
Germany
49(0)4036090707
[email protected]
Thank you for your interest in our online shop. The protection of your privacy is very important to us. In the following, we will inform you in detail about the handling of your data.
1. Access data and hosting
You can visit our website without giving any personal information. Each time a website is called up, the web server only automatically saves a so-called server log file, which contains, for example, the name of the requested file, your IP address, the date and time of the call, the amount of data transferred, and the requesting provider (access data) and documents the call.
These access data are evaluated exclusively for the purpose of ensuring trouble-free operation of the site and improving our offer. According to Art. 6 Para. 1 S. 1 lit.f DSGVO, this serves to safeguard our legitimate interests, which are predominant in the context of a weighing of interests, in a correct presentation of our offer. All access data will be deleted no later than seven days after the end of your visit to the website.
Third-party hosting services
As part of processing on our behalf, a third-party provider provides us with the services for hosting and displaying the website. All data that is collected as part of the use of this website or in the forms provided in the online shop, as described below, are processed on its servers. Processing on other servers only takes place within the framework explained here.
This service provider is located within a country of the European Union or the European Economic Area.
2. Data collection and use for contract processing, establishing contact and opening a customer account
We collect personal data if you voluntarily provide it to us as part of your order or when you contact us (e.g. using the contact form or email). Mandatory fields are marked as such because in these cases, we need the data to process the contract or to process your contact, and you cannot send the order or contact without specifying them. Which data is collected can be seen from the respective input forms. We use the data you have provided in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR to process contracts and process your inquiries.
Insofar as you have given your consent to this in accordance with Article 6 Paragraph 1 Clause 1 lit. a GDPR by deciding to open a customer account, we will use your data for the purpose of opening a customer account. After the contract has been fully processed or your customer account has been deleted, your data will be restricted for further processing and deleted after the tax and commercial retention periods have expired, unless you have expressly consented to further use of your data or we reserve the right to use data beyond that is permitted by law and about which we will inform you in this declaration. The deletion of your customer account is possible at any time and can be done either by sending a message to the contact option described below or using a function provided for this in the customer account.
3. Data transfer
In order to fulfill the contract in accordance with Art. 6 Para. 1 S. 1 lit. Depending on which payment service provider you select in the ordering process, we will pass on the payment data collected for this purpose to the credit institute commissioned with the payment and, if applicable, to the payment service provider commissioned by us, or to the selected payment service. In some cases, the selected payment service providers also collect this data themselves if you create an account there. In this case, you must log in to the payment service provider with your access data during the ordering process. In this respect, the data protection declaration of the respective payment service provider applies.
4. Newsletter
Email advertising with registration for the newsletter
If you register for our newsletter, we use the data required for this or separately provided by you to send you our email newsletter regularly based on your consent according to Art. 6 Para. 1 S. 1 lit. a GDPR.
5. Data Processing for Order Handling
5.1 In order to process your order, we work together with the following service providers who support us wholly or partially in the execution of concluded contracts. These data are used only for the specific purpose stated and are stored for the duration of their use.
The personal data collected by us will be passed on to the transport company commissioned with the delivery within the scope of contract execution, insofar as this is necessary for the delivery of the goods. We will pass on your payment data to the commissioned credit institution within the framework of payment processing, if this is necessary for payment handling. If payment service providers are used, we explicitly inform you of this below. The legal basis for the transfer of data is Art. 6 Para. 1 lit. b GDPR.
5.2 Use of Payment Service Providers
- PayPal
If you pay via PayPal, credit card via PayPal, direct debit via PayPal or – if offered – “purchase on account” or “installment payment” via PayPal, we pass on your payment data to PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter “PayPal”). The transfer takes place in accordance with Art. 6 Para. 1 lit. b GDPR and only insofar as this is necessary for payment processing.
PayPal reserves itself for the payment methods credit card via PayPal, direct debit via PayPal or – if offered – “purchase on account” or “installment payment” via PayPal the execution of a credit check. The result of the credit check with respect to the statistical payment default probability is used by PayPal for the purpose of deciding on the provision of the respective payment method. The credit check can contain probability values (so-called score values). If score values are included in the result of the credit report, they are based on recognized scientific, mathematical-statistical methods.
The credit information can contain probability values (so-called score values). Insofar as score values are included in the results of the credit rating, they are based on a scientifically recognized mathematical-statistical procedure. Among other data, address data is included in the calculation of the score values.
6. Cookies and Web Analysis
6.1 To make visiting our website attractive and to enable the use of certain functions, we use so-called cookies on various pages. These are small text files that are stored on your end device. Some of the cookies we use are deleted again after the end of the browser session, i.e., after you close your browser (so-called session cookies). Other cookies remain on your end device and enable your browser to be recognized the next time you visit (persistent cookies).
6.2 You can set your browser in such a way that you are informed about the setting of cookies and decide individually about their acceptance or exclude the acceptance of cookies for certain cases or generally. Each browser differs in the way it manages the cookie settings. This is described in the help menu of each browser, which explains how you can change your cookie settings. These can be found for the respective browsers under the following links:
- Internet Explorer: https://support.microsoft.com/en-us/help/17442/windows-internet-explorer-delete-manage-cookies
- Firefox: https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
- Chrome: https://support.google.com/chrome/answer/95647?hl=en
7. Data Security
7.1 During a visit to our website, we use the widespread SSL (Secure Socket Layer) procedure in conjunction with the highest encryption level supported by your browser. In general, this is a 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. Whether a single page of our website is transmitted in encrypted form is indicated by the closed representation of the key or lock symbol in the lower status bar of your browser.
7.2 We also take suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
8. Contact Us
If you have any questions or concerns about our privacy policy or the handling of your personal data, please dont hesitate to contact us using the information below:
[Your Company Name]
[Your Address]
[City, State, ZIP Code]
[Email Address]
[Phone Number]
9. Changes to this Privacy Policy
We reserve the right to update or change our privacy policy at any time. Any changes will be posted on this page with the revised Privacy Policys effective date. You are encouraged to check this page periodically to stay informed about how we are protecting your personal information.
10. Legal Basis for Processing
In case we obtain your consent for personal data processing operations, Article 6(1)(a) of the GDPR serves as the legal basis for the processing of your personal data. Article 6(1)(b) serves as the legal basis for processing operations that are necessary for the performance of a contract to which you are a party, as well as for any pre-contractual measures.
If processing your personal data is necessary for compliance with a legal obligation to which our company is subject, Article 6(1)(c) of the GDPR is the legal basis.
In the event that the processing of personal data is required to protect vital interests of the data subject or another individual, Article 6(1)(d) serves as the legal basis.
If processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the data controller, Article 6(1)(e) of the GDPR is the legal basis.
11. Your Rights
As a data subject, you have the right to access, rectify, and delete your personal data. You can also restrict or object to its processing and have the right to data portability. To exercise your rights, please contact us using the contact information provided above.
12. Supervisory Authority
If you believe that the processing of your personal data violates data protection laws, you have the right to lodge a complaint with a supervisory authority responsible for data protection.
13. Effective Date
This Privacy Policy is effective as of [Effective Date]. Any changes or updates to this policy will be reflected on this page.