Data protection
Privacy Policy
Unless otherwise stated below, the provision of your personal data is neither legally nor contractually required, nor is it necessary for the conclusion of a contract. You are not obligated to provide the data. Failure to provide it will have no consequences. This only applies unless otherwise stated during the subsequent processing operations.
"Personal data" means any information relating to an identified or identifiable natural person.
Server log files
You can visit our websites without providing any personal information.
Each time you access our website, usage data is transmitted to us or our web host/IT service provider via your internet browser and stored in log files (so-called server log files). This stored data includes, for example, the name of the page accessed, the date and time of access, the IP address, the amount of data transferred, and the requesting provider.
The processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in ensuring the smooth operation of our website and improving our offering.
Your data may be transferred to third countries outside the EU, particularly to Canada and the USA, and processed there. An adequacy decision of the EU Commission exists for Canada. An adequacy decision of the EU Commission exists for the USA: the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer is based on contractual obligations comparable to those of the EU Commission's standard contractual clauses.
contact
Person responsible
Please contact us if you wish. The controller responsible for data processing is: Pure-Party, Welserstraße 3, 87463 Dietmannsried, Germany, 01704092361, pure-party@gmx.de
Customer's proactive contact via email
If you initiate business contact with us via email, we will only collect your personal data (name, email address, message text) to the extent you provide it. This data processing serves to process and respond to your contact request.
If the contact serves to carry out pre-contractual measures (e.g. advice in the event of purchase interest, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 (1) (b) GDPR.
If contact is made for other reasons, this data processing will be based on Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in processing and responding to your inquiry. In this case, you have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time for reasons arising from your particular situation.
We will only use your email address to process your request. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.
Collection and processing when using the contact form
When you use the contact form, we collect your personal data (name, email address, message text) only to the extent you provide it. Data processing serves the purpose of establishing contact.
If the contact is for the implementation of pre-contractual measures (e.g. advice in the event of purchase interest, preparation of an offer) or concerns a contract already concluded between you and us, this data processing is carried out on the basis of Art. 6 (1) (b) GDPR. If the contact is made for other reasons, this data processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in processing and answering your enquiry. In this case, you have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time for reasons arising from your particular situation. We will only use your e-mail address to process your enquiry. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.
Collection and processing when sending images via upload
We provide an upload function for image files on our website. This allows you to send images to us via encrypted data transmission. When you submit your images, we may collect your personal data (image of an identifiable person) only to the extent provided by you. The data is processed for the purpose of creating personalized products. The submitted image serves as a template for the product and is used for this purpose (e.g., T-shirt printing). The processing is based on Art. 6 (1) (b) GDPR and is necessary for the fulfillment of a contract with you.
Your data may be shared with service providers we use to process your order. It will not be shared with other third parties.
We will use the image you send us only for the purpose of providing our services. Your data will then be deleted in compliance with statutory retention periods unless you have consented to further processing and use.
Orders
Collection, processing and transfer of personal data when placing orders
When you place an order, we collect and process your personal data only to the extent necessary to fulfill and process your order and to process your inquiries. Providing this data is required to conclude a contract. Failure to provide this data will result in no contract being concluded. Processing is based on Art. 6 (1) (b) GDPR and is necessary to fulfill a contract with you.
Your data will be shared, for example, with your chosen shipping companies and dropshipping providers, payment service providers, order processing service providers, and IT service providers. In all cases, we strictly adhere to legal requirements. The scope of data transfer is limited to a minimum.
Your data may be transferred to third countries outside the EU, particularly to Canada and the USA, and processed there. An adequacy decision of the EU Commission exists for Canada. An adequacy decision of the EU Commission exists for the USA: the Trans-Atlantic Data Privacy Framework (TADPF). Shopify is not certified under the TADPF. This data transfer is based on contractual obligations comparable to those of the EU Commission's standard contractual clauses.
Advertising
Use of the email address for sending newsletters
We use your email address, regardless of contract processing, exclusively for our own advertising purposes to send newsletters, provided you have expressly consented to this. Data is processed on the basis of Art. 6 (1) (a) GDPR with your consent. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation. You can unsubscribe from the newsletter at any time by using the corresponding link in the newsletter or by notifying us. Your email address will then be removed from the mailing list.
Using Klaviyo
We use the service of Klaviyo Inc. (125 Summer St Floor 7, Boston, MA 02111, USA; "Klaviyo") to send the newsletter as part of order processing.
We will forward the information you provide during newsletter registration (email address, first and last name if applicable) to Klaviyo. This data processing serves the purpose of sending the newsletter and its statistical analysis.
To evaluate newsletter campaigns, the newsletters sent contain a 1x1 pixel graphic (tracking pixel) or a tracking link. This allows us to determine whether you have opened the newsletter and whether you have clicked on any integrated links. In this context, we collect your personal data such as your IP address, browser type and device, and the time of access. This data can be used to create user profiles under a pseudonym. The collected data is not used to identify you personally. The collected data is used solely for statistical analysis to improve newsletter campaigns.
Your data is generally transferred to and stored on Klaviyo servers in the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Klaviyo has certified itself according to the TADPF and is thus committed to adhering to European data protection principles.
Your personal data is processed on the basis of Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in a targeted, effective, and user-friendly newsletter system. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.
Further information on data protection at Klaviyo can be found at https://www.klaviyo.com/legal/privacy-notice (https://www.klaviyo.com/legal/privacy-notice) and at https://www.klaviyo.com/legal/data-processing-agreement (https://www.klaviyo.com/legal/data-processing-agreement).
Payment service provider credit report
Using Klarna payment options
We use the payment service of Klarna Bank AB (publ) (Sveavägen 46, 111 34 Stockholm, Sweden; "Klarna") on our website. By selecting and using payment via Klarna, the data required for payment processing will be transmitted to Klarna in order to fulfill the contract with you using the selected payment method. This processing is based on Art. 6 (1) (b) GDPR.
Cookies may be stored that enable your browser to be recognized. The resulting data processing is based on Art. 6 (1) (f) GDPR, based on our overriding legitimate interest in offering a customer-oriented range of payment methods. You have the right to object to this processing of personal data concerning you at any time for reasons arising from your particular situation.
"Pay Later" (invoice), "Pay Now" (payment by direct debit), "Financing" (installment purchase)
For certain payment methods such as "Pay Later" (invoice), "Pay Now" (payment by direct debit), and "Financing" (installment purchase), Klarna reserves the right to obtain a credit report based on mathematical-statistical procedures using credit agencies.
For this purpose, Klarna transmits the personal data required for a credit check, such as first and last name, address, gender, email address, IP address and data related to the order, to a credit agency for the purpose of identity and credit checks and uses the information received about the statistical probability of a payment default to make a balanced decision about the establishment, implementation or termination of the contractual relationship. The credit report may contain probability values (score values) that are calculated on the basis of scientifically recognized mathematical-statistical procedures and whose calculation includes, among other things, address data. Your legitimate interests are taken into account in accordance with the statutory provisions. The data processing serves the purpose of the credit check for the initiation of a contract. The processing is carried out on the basis of Art. 6 (1) (f) GDPR due to our overriding legitimate interest in protection against payment default when Klarna makes advance payments. You have the right to object to this processing of personal data concerning you based on Art. 6 (1) (f) GDPR at any time by notifying Klarna, for reasons related to your particular situation. Providing this data is necessary for concluding the contract using your preferred payment method. Failure to provide this data will result in the contract not being concluded using your chosen payment method.
Further information, in particular which credit agencies Klarna shares your personal data with, can be found for Germany at https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agencies (https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agencies) and for Austria at https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_at/credit_rating_agencies (https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_at/credit_rating_agencies)
General information about Klarna can be found for Germany at: https://www.klarna.com/de/ (https://www.klarna.com/de/) and for Austria at https://www.klarna.com/at/ (https://www.klarna.com/at/). Your personal data will be treated by Klarna in accordance with the applicable data protection regulations and in accordance with the information in Klarna's privacy policy for Germany at https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/privacy (https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/privacy) and for Austria at https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_at/privacy (https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_at/privacy).
Cookies
Our website uses cookies. Cookies are small text files that are stored in the Internet browser or by the Internet browser on a user's computer system. When a user visits a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic string that allows the browser to be uniquely identified when the website is visited again.
Cookies are stored on your computer. Therefore, you have full control over the use of cookies. By selecting the appropriate technical settings in your Internet browser, you can be notified before cookies are set and decide whether to accept them individually, as well as prevent the storage of cookies and the transmission of the data they contain. Cookies that have already been stored can be deleted at any time. However, please note that if you do this, you may not be able to use all of the features of this website to their full extent.
The following links will tell you how to manage (including deactivate) cookies in the most important browsers:
Chrome: https://support.google.com/accounts/answer/61416?hl=de (https://support.google.com/accounts/answer/61416?hl=de)
Microsoft Edge: https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-lB6schen-63947406-40ac-c3b8-57b9-2a946a29ae09 (https://support.microsoft.com/de-de/microsoft-edge/cookies-in-microsoft-edge-lB6schen-63947406-40ac-c3b8-57b9-2a946a29ae09)
Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehne (https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehne)
Safari: https://support.apple.com/de-de/guide/safari/manage-cookies-and-website-data-sfri11471/mac (https://support.apple.com/de-de/guide/safari/manage-cookies-and-website-data-sfri11471/mac)
Technically necessary cookies
Unless otherwise stated in the privacy policy below, we only use technically necessary cookies to make our website more user-friendly, effective, and secure. Furthermore, cookies enable our systems to recognize your browser even after you change pages and to offer you services. Some functions of our website cannot be offered without the use of cookies. For these functions, it is necessary that the browser is recognized even after you change pages.
The use of cookies or similar technologies is based on Section 25 (2) of the TTDSG (Teleservices Data Protection Act). Your personal data is processed on the basis of Article 6 (1) (f) GDPR, based on our overriding legitimate interest in ensuring optimal website functionality and a user-friendly and effective design of our offering.
You have the right to object to the processing of personal data concerning you at any time for reasons related to your particular situation.
Use of GDPR cookie management
We use the GDPR/DSGVO cookie management of iSense LLC (855 W Maude Ave, Mountain View, CA 94043, USA; "iSenseLabs") on our website.
The service allows you to grant consent to data processing via the website, in particular the use of cookies, as well as to exercise your right to withdraw consent you have already given. Data processing serves the purpose of obtaining and documenting the necessary consent to data processing and thus complying with legal obligations. Cookies are used for this purpose to save your consent status.
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). iSenseLabs is not certified under the TADPF.
The data processing is carried out to fulfill a legal obligation on the basis of Art. 6 (1) (c) GDPR.
For more information about data protection at iSenseLabs Next, please visit: https://isenselabs.com/pages/privacypolicy (https://isenselabs.com/pages/privacypolicy)
Advertising tracking
Using the Meta Pixel
We use the Meta Pixel of Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; "Meta") on our website.
Meta and we are jointly responsible for the collection of your data when integrating the service and the transmission of this data to Meta. This is based on an agreement between us and Meta on the joint processing of personal data, which defines the respective responsibilities. The agreement is available at https://de-de.facebook.com/legal/terms/businesstools (https://de-de.facebook.com/legal/terms/businesstools). According to this agreement, we are particularly responsible for fulfilling the information obligations pursuant to Art. 13 and 14 GDPR, for adhering to the security requirements of Art. 32 GDPR with regard to the correct technical implementation and configuration of the service, and for complying with the obligations under Art. 33 and 34 GDPR, insofar as a breach of the protection of personal data affects our obligations under the agreement on joint processing. Meta is responsible for enabling the rights of data subjects in accordance with Articles 15 - 20 GDPR, for complying with the security requirements of Article 32 GDPR with regard to the security of the service and for complying with the obligations under Articles 33 and 34 GDPR, insofar as a breach of the protection of personal data affects Meta's obligations under the joint processing agreement.
The application serves the purpose of targeting website visitors with interest-based advertising on the social networks Facebook and Instagram. For this purpose, the Meta remarketing tag has been implemented on the website. This tag establishes a direct connection to the Meta servers when you visit the website. This transmits to the Meta server which of our pages you have visited. Meta assigns this information to your personal Facebook and/or Instagram user account. When you visit the social networks Facebook or Instagram, you will then be shown personalized, interest-based ads.
The application also serves the purpose of compiling conversion statistics. This allows us to learn the total number of users who clicked on one of our ads and were redirected to a page with a conversion tracking tag, as well as the actions taken after being redirected to this website. However, we do not receive any information that could personally identify users.
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
Your personal data will be processed with your consent on the basis of Art. 6 (1) (a) GDPR. You may revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
You can deactivate the "Custom Audiences" remarketing feature here. Further information on Meta's collection and use of data, your rights in this regard, and options for protecting your privacy can be found in Meta's privacy policy at https://www.facebook.com/about/privacy/ (https://www.facebook.com/privacy/policy/?entry_point=data_policy_redirect&entry=0).
Use of Google Ads Conversion Tracking
We use the online advertising program "Google Ads" on our website, including conversion tracking (visit action analysis). Google Conversion Tracking is an analytics service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; Google).
When you click on an ad served by Google, a conversion tracking cookie is stored on your computer. These cookies have a limited lifespan, contain no personal data, and are therefore not used to identify you personally. If you visit certain pages of our website and the cookie has not yet expired, Google and we can recognize that you clicked on the ad and were redirected to that page. Each Google Ads customer receives a different cookie. This means that cookies cannot be tracked across Ads customers' websites.
The information collected through the conversion cookie is used to compile conversion statistics. This tells us the total number of users who clicked on one of our ads and were redirected to a page with a conversion tracking tag. However, we do not receive any information that could be used to personally identify users.
Your data may be transferred to Google LLC's servers in the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TTDSG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
Further information and Google's privacy policy can be found at: https://www.google.de/policies/privacy/ (https://www.google.de/policies/privacy/)
Use of Google AdSense
We use the AdSense function of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website. The data processing serves the purpose of renting advertising space on the website and targeting website visitors with interest-based advertising. Using this function, visitors to the provider's website are shown personalized, interest-based advertising from the Google Display Network. Google uses cookies that enable an analysis of your website use. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. For the USA, an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF), exists. Google has certified itself according to the TADPF and is therefore committed to adhering to European data protection principles. Google may transfer this information to third parties where required to do so by law, or where third parties process the data on Google's behalf. Under no circumstances will Google associate your IP address with any other data held by Google.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TTDSG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
Further information and Google's privacy policy can be found at: https://www.google.com/policies/technologies/ads/ (https://www.google.com/policies/technologies/ads/) and https://www.google.de/policies/privacy/ (https://www.google.de/policies/privacy/)
Using TikTok Pixel
We use the TikTok pixel on our website from TikTok Technology Limited (10 Earlsfort Terrace, Dublin, D02 T380, Ireland; "TikTok Ireland") and TikTok Information Technologies UK Limited (6th Floor, One London Wall, London, EC2Y 5EB, United Kingdom; "TikTok UK"). Both companies are joint controllers for data processing (hereinafter "TikTok").
The data processing serves the purpose of identifying and analyzing our customers' website access, as well as improving customer engagement through targeted advertising and evaluating the effectiveness of advertisements on TikTok. To do this, TikTok uses technologies such as cookies and pixels that enable recognition of your browser. The following information, among others, may be collected and transmitted to TikTok: date and time of the visit, information about the browser and device type you use, screen resolution, IP address. TikTok can assign this information to your personal TikTok user account. User profiles can be created from the data collected in this way using pseudonyms. However, this does not allow personal identification of users.
Your data may be transferred to third countries, such as the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). TikTok is not certified under the TADPF. Data transfers to the USA and to third countries without an adequacy decision are based, among other things, on standard contractual clauses as appropriate guarantees for the protection of personal data, available at: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de (https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de).
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TTDSG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
Further information on data protection can be found at https://www.tiktok.com/legal/new-privacy-policy?lang=de-DE (https://www.tiktok.com/legal/new-privacy-policy?lang=de-DE) and https://ads.tiktok.com/i18n/official/policy/controller-to-controller (https://ads.tiktok.com/i18n/official/policy/controller-to-controller).
Plug-ins and other
Use of Google Tag Manager
We use the Google Tag Manager of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google") on our website.
This application manages JavaScript tags and HTML tags, which are used, in particular, to implement tracking and analysis tools. Data processing serves the purpose of tailoring and optimizing our website to meet your needs.
The Google Tag Manager itself does not store cookies, nor does it process personal data. However, it does allow the activation of additional tags that can collect and process personal data.
Further information on terms of use and data protection can be found here (https://www.google.com/intl/de/tagmanager/use-policy.html).
Using Google Translate
We use the translation service of the
Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland).
The data processing serves the purpose of displaying the information provided on the website in another language. To ensure that the translation is automatically displayed based on your choice of language, the browser you use connects to Google's servers. Cookies may be used for this purpose. Among other things, the following information may be collected and processed: IP address, URL of the page visited, date and time.
Your data may be transferred to the USA. For the USA, the EU Commission has issued an adequacy decision, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself according to the TADPF and is thus committed to complying with European data protection principles.
The use of cookies or similar technologies is based on your consent in accordance with Section 25 (1) (1) TTDSG in conjunction with Article 6 (1) (a) GDPR. Your personal data is processed with your consent in accordance with Article 6 (1) (a) GDPR. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of your consent until the revocation.
For more information about how Google collects and uses your data, please visit: https://www.google.com/policies/privacy/ (https://www.google.com/policies/privacy/).
Rights of data subjects and storage period
Duration of storage
After the contract has been fully processed, the data will initially be stored for the duration of the warranty period, then in accordance with statutory retention periods, in particular those under tax and commercial law, and then deleted after the expiry of the period unless you have consented to further processing and use.
Rights of the data subject
If the legal requirements are met, you are entitled to the following rights under Articles 15 to 20 GDPR: Right to information, to rectification, to erasure, to restriction of processing, to data portability.
In addition, according to Art. 21 (1) GDPR, you have the right to object to processing based on Art. 6 (1) (f) GDPR and to processing for the purposes of direct marketing.
Right to lodge a complaint with the supervisory authority
According to Art. 77 GDPR, you have the right to complain to the supervisory authority if you believe that the processing of your personal data is not lawful.
You can lodge a complaint with the supervisory authority responsible for us, which you can reach using the following contact details:
State Commissioner for Data Protection and Freedom of Information Baden-Württemberg
Königstrasse 10 a
70173 Stuttgart
Phone: +49 711 6155410
Fax: +49 711 61554115
Email: poststelle@lfdi.bwl.de
Right of objection
If the personal data processing listed here is based on our legitimate interest pursuant to Art. 6 (1) (f) GDPR, you have the right to object to this processing at any time with future effect for reasons arising from your particular situation.
Once you have objected, the processing of the data in question will be stopped unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, or if the processing serves to assert, exercise or defend legal claims.