Privacy Policy
YOUR PRIVACY AT PLASTIK FUNK
The following notes provide a simple overview of what happens to your personal data when you visit our website and order products. Personal data is all data with which you can be personally identified. We process your data in accordance with the applicable legal provisions for the protection of personal data, in particular the General Data Protection Regulation (GDPR) and the country-specific implementing laws applicable to our company. You can find detailed information on the subject of data protection in our data protection declaration listed under this text.
RESPONSIBLE
Responsible for the collection, processing and use of your personal data within the meaning of Art. 4 No. 7 DSGVO is:
DRP Style GmbH
Christinenstraße 15
40880 Ratingen
info@drp-original.de
If you want to object to the collection, processing or use of your data by us in accordance with these data protection regulations as a whole or for individual measures, you can address your objection to the person responsible. You can save and print out this data protection declaration at any time.
DATA COLLECTION ON OUR WEBSITE
On the one hand, your data is collected when you communicate it to us. This can, for example, be data that you enter during registration on our website. If you order products on our website, we need certain information from you. This is marked as mandatory information in the ordering process. Without this data, we will unfortunately have to refuse to conclude the contract, as we will then not be able to carry it out. On the other hand, part of the data is collected to ensure that the website is provided without errors. Other data can be used to analyze user behavior. This is primarily technical data (e.g. internet browser, operating system or time of the page view). This data is collected automatically as soon as you enter our website.
WHAT DO WE WANT TO KNOW ABOUT YOU?
First name, last name and gender
In order to be able to address you in our further communication, we would like to use your personal data. These are also necessary in order to be able to register your order.
Address
We need your address to process the order - on the one hand, to send you an invoice if necessary and/or to ship products.
Email address
You will receive a confirmation email for your order and a contract confirmation by email. For this we need an email address from you, which you enter during the ordering process.
Phone number
For problems with orders, you can enter your phone number when registering.
IP address
For technical and legal reasons, your IP address will also be processed.
Customer Account
So that you don't have to enter your data again and again, you can store a plastic radio account on our website. The following personal data can be included in your Plastik Funk account: name, delivery and billing address, date of birth, telephone number and access data. We also keep records of your previous orders for a better shopping experience.
Storage periods
We store your personal data for as long as is necessary for the purposes described in this document. However, due to legal regulations, among other things, it may be necessary for us to store data for a longer period of time.
DATA COLLECTION ON OUR WEBSITE EIGENE DIENSTE
Registration on our website
The data subject has the option of registering on the website of the controller by providing personal data. Which personal data is transmitted to the person responsible for processing results from the respective input mask used for registration. The personal data entered by the person concerned will be collected and stored exclusively for internal use and for the purposes specified by the person responsible for processing and for their own purposes. Legality here is based on the fulfillment of a contract or a pre-contractual measure (Art. 6 GDPR Art. 1b), but can also be based on the consent of the person concerned in accordance with Art. 6 GDPR Para. 1a, for example in the case of purchase contracts. If this is the case, consent is given on a voluntary basis with the acknowledgment of this data protection declaration, until revoked in accordance with Article 7 GDPR Paragraph 3. The person responsible for processing can arrange for the data to be passed on to one or more processors, for example a parcel service provider, who also uses the personal data exclusively for internal use attributable to the person responsible for processing.
By registering on the website of the person responsible for processing, the IP address assigned to the person concerned by the Internet service provider (ISP), the date and time of registration are also stored. This data is stored against the background that this is the only way to prevent misuse of our services and, if necessary, to enable criminal offenses that have been committed to be investigated. In this respect, the storage of this data is necessary to protect the person responsible for processing. In principle, this data will not be passed on to third parties unless there is a legal obligation to pass it on or the passing on is for criminal prosecution.
The registration of the data subject, with the voluntary provision of personal data, enables the data controller to offer the data subject content or services that, due to the nature of the matter, can only be offered to registered users. Registered persons are free to change the personal data provided during registration at any time or to have it completely deleted from the database of the person responsible for processing.
The person responsible for processing shall provide any data subject with information at any time upon request as to which personal data is stored about the data subject. Furthermore, the person responsible for processing corrects or deletes personal data at the request or notice of the person concerned, provided that there are no legal storage requirements to the contrary. A data protection officer named in this data protection declaration and all employees of the person responsible for processing are available to the person concerned as contact persons in this context.
Newsletters
With your consent, we will send you newsletters and other offers from us. For the content we can take into account your interests and your previous bookings and sometimes also data from other companies. If you no longer wish to receive newsletters and offers, you can simply unsubscribe via the link in the newsletter. You can also send us your revocation to: info@drp-original.de.
Contact form
If you send us inquiries via the contact form, your information from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and in the event of follow-up questions. We do not pass on this data without your consent.
The processing of the data entered in the contact form is therefore exclusively based on your consent (Article 6 (1) (a) GDPR). You can revoke this consent at any time. An informal message by e-mail to us is sufficient for this: info@drp-original.de. The legality of the data processing operations carried out up to the revocation remains unaffected by the revocation. We only use your email address to process your request. Your data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. This is usually the case when it can be inferred from the circumstances that the facts in question have been finally clarified.
PAYMENT SYSTEMS
On our site you can choose between different payment methods. Payment-relevant data is collected for this purpose in order to be able to carry out your order and payment processing. The data required to conclude the contract will be transmitted to our payment service provider for payment processing. The payment systems we use use SSL encryption to protect the transmission of your data.
PayPal
If you select "PayPal" as the payment method in our online shop, payment is processed by PayPal (Europe) S.à.r.l. et Cie S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg. Here, the data of the person concerned is automatically transmitted to PayPal. By selecting this payment method, the person concerned agrees to the transmission of personal data required for payment processing. The personal data transmitted to PayPal is usually first name, last name, address, email address, IP address, telephone number, mobile phone number or other data required for payment processing. Personal data related to the respective order are also required to process the purchase contract. Details on data protection at PayPal can be found here.
Amazon Pay
If you select "Amazon Pay" as the payment method in our online shop, the payment will be processed by Amazon Payments Europe S.C.A., 38 avenue J.F. Kennedy, L-1855 Luxembourg. Here, the data of the person concerned is automatically transmitted to Amazon Pay. By selecting this payment method, the person concerned agrees to the transmission of personal data required for payment processing. The personal data transmitted to Amazon Pay is usually first name, last name, address, email address, IP address, telephone number, mobile phone number or other data required for payment processing. Personal data related to the respective order are also required to process the purchase contract. Details on data protection at Amazon Pay can be found here.
Klarna
If you select "Klarna" as the payment method in our online shop, the payment will be processed by Klarna Bank AB (publ) [https://www.klarna.com/de], Sveavägen 46, 111 34 Stockholm, Sweden. In this case, the data of the data subject is automatically transmitted to Klarna. By selecting this payment method, the person concerned agrees to the transmission of personal data required for payment processing. The personal data transmitted to Klarna is usually first name, last name, address, email address, IP address, telephone number, mobile phone number or other data required for payment processing. Personal data related to the respective order are also required to process the purchase contract. Details on data protection at Klarna can be found here.
Prepayment
In the case of prepayment, you will receive an invoice in advance with your personal data required for this. As soon as you have transferred this to the specified bank account, we will deliver the ordered items immediately.
ANALYSIS AND TRACKING TOOLS
The tracking measures listed below and used by us are carried out on the basis of Article 6 (1) sentence 1 lit. f GDPR. With the tracking measures used, we want to ensure a needs-based design and the continuous optimization of our website. On the other hand, we use the tracking measures to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you. These interests are to be regarded as legitimate within the meaning of the aforementioned provision. The respective data processing purposes and data categories can be found in the corresponding tracking tools.
Cookies
The website uses so-called cookies. Cookies do not damage your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser. Most of the cookies we use are so-called “session cookies”. They are automatically deleted after your visit. Other cookies remain stored on your end device until you delete them. These cookies enable us to recognize your browser on your next visit. You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when the browser is closed. If cookies are deactivated, the functionality of this website may be restricted. Cookies that are required to carry out the electronic communication process or to provide certain functions you want (e.g. shopping cart function) are stored on the basis of Art. 6 Para. 1 lit. f GDPR. The website operator has a legitimate interest in the storage of cookies for the technically error-free and optimized provision of its services. Insofar as other cookies (e.g. cookies for analyzing your surfing behaviour) are stored, these are treated separately in this data protection declaration.
Google Maps
Google Maps uses so-called "cookies", text files that are stored on your computer if you use the map function on our website. If you click on the link, a direct connection will be established between your browser and the Google server. Google receives the information that you have visited our site with your IP address. If you click on the Google Maps link while you are logged into your Google account, Google can assign your visit to our website to your user account. We would like to point out that as the provider of the pages, we have no knowledge of the content of the data transmitted or how it is used by Google. Details on data collection (purpose, scope, further processing, use) as well as on your rights and setting options can be found in Google's data protection information. The personal data of the users will be deleted or made anonymous after 14 months. Google is also certified according to the Privacy Shield Agreement and thus offers a guarantee of compliance with European data protection law
(https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data that you transmit to us cannot be read by third parties.
Wordfence
This website uses security plugin Wordfence. This plugin is used to ward off hacker attacks. Wordfence is provided by Defiant, 800 5th Ave Ste 4100, Seattle, WA 98104.
Wordfence currently uses three types of cookies: wfwaf-authcookie (hash), wf_loginalerted (hash) and wfCBLBypass.
wfwaf-authcookie (hash) is used by the wordfence firewall to do a skill check of the current user before loading WordPress. The cookie is used for visitors to the website who can log in. It allows the visitor increased access by having the Wordfence firewall recognize the visitor. Unregistered visitors can also be recognized and their access to secure areas restricted. The cookie tells the firewall what level of access a visitor has to help the firewall make smart decisions about who to allow and who to block.
wf_loginalerted (hash) is used to notify the Wordfence admin when an admin logs in from a new device or location. Only administrators receive this cookie. It helps website operators to recognize if an admin login has taken place from a new device or location.
wfCBLBypass allows visitors to bypass a country block by accessing a hidden URL. It gives website owners the ability to allow certain users of blocked countries access even though their country has been blocked. This cookie can be used to track who is allowed to bypass a country's block. When a hidden URL defined by the site administrator is visited, this cookie is used to verify whether the visitor can access the website from a country restricted by the country blocking. This will be set for anyone who knows the URL that allows bypassing the default country blocking. This cookie is not set for someone who doesn't know the hidden URL to bypass country blocking.
For more information, see Defiant's privacy policy at: https://www.wordfence.com/privacy-policy/
Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Inc. ("Google"). Google Analytics uses so-called "cookies", text files that are stored on your computer and enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. If IP anonymization is activated on this website, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. You can prevent the storage of cookies by setting your browser software accordingly; we would like to point out to you however that in this case you can if applicable not use all functions of this website in full. You can also prevent Google from collecting the data generated by the cookie and related to your use of the website (including your IP address) and from processing this data by Google by downloading the browser plug-in available under the following link and install: https://tools.google.com/dlpage/gaoptout?hl=de
Server log files - access data
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. The following data is logged in this way:
– Visited website
– Time at the time of access
– Amount of data sent in bytes
– Source/reference from which you got to the page
– Browser used
– Operating system used
– IP address used
The server log files are stored for a maximum of 7 days and then deleted. The data is stored for security reasons, e.g. B. to be able to clarify cases of abuse. If data has to be kept for reasons of evidence, they are excluded from deletion until the incident has been finally clarified.
This data is not merged with other data sources.
This data is collected on the basis of Article 6 (1) (f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of his website - the server log files must be recorded for this purpose. A transfer of data to bodies in countries outside the European Union (so-called third countries) is not intended.
SOCIAL-MEDIA-PLUGINS WITH SHARIFF
Social media plugins are used on our website (e.g. Instagram, Facebook).
You can usually recognize the plugins by the respective social media logos. To ensure data protection on our website, we only use these plugins together with the so-called "Shariff" solution. This application prevents the plugins integrated on our website from transferring data to the respective provider when you first enter the site.
Only when you activate the respective plugin by clicking on the associated button is a direct connection to the provider's server established (consent). As soon as you activate the plugin, the respective provider receives the information that you have visited our site with your IP address. If you are logged into your respective social media account (e.g. Facebook) at the same time, the respective provider can assign the visit to our website to your user account.
Activating the plugin represents consent within the meaning of Article 6 Paragraph 1 lit. a GDPR. You can revoke this consent at any time with effect for the future. We have a legitimate interest in the widest possible visibility on social media.
If you do not want the social media to be able to assign your visit to our pages to your respective user account, please log out of the respective user account.
Instagram plugin
Functions of the Instagram service (provider: Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) are integrated on our website. You can recognize this Instagram plugin by the Instagram logo on our site.
If you are logged into your Instagram account, you can link the content of our pages to your Instagram profile by clicking on the Instagram button. This allows Instagram to associate your visit to our site with your user account. We would like to point out that as the provider of the pages, we have no knowledge of the content of the data transmitted or how it is used by Instagram. You can find more information on this in Instagram's privacy policy: http://instagram.com/about/legal/privacy/
Instagram Shopping
If you visit our Instagram profile "plasticfunk" (provider: Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) in the Instagram app, you can click on our website (www.funkyouverymuch.de) or the "View on the website" button from the Instagram app will be forwarded directly to our online shop.
This allows Instagram to associate your visit to our site with your user account. We would like to point out that we, as the provider of the site, have no knowledge of the content of the transmitted data or how it is used by Instagram. You can find more information on this in Instagram's privacy policy: http://instagram.com/about/legal/privacy/.
Facebook plugins (Like & Share button)
Functions of the social network Facebook (provider: Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA) are integrated on our website. You can recognize these Facebook plugins by the Facebook logo or the “Like button” (“I like”) on our site. You can find an overview of the plugins here: https://developers.facebook.com/docs/plugins/.
If you are logged into your Facebook account, you can link the content of our pages to your Facebook profile by clicking on the Facebook button or the Like button. This allows Facebook to associate your visit to our site with your user account. We would like to point out that as the provider of the pages, we have no knowledge of the content of the data transmitted or how it is used by Facebook. You can find more information on this in Facebook's privacy policy at: https://www.facebook.com/privacy/explanation.
SUBJECT RIGHTS
Every data subject has the right to information under Article 15 GDPR, the right to rectification under Article 16 GDPR, the right to erasure under Article 17 GDPR, the right to restriction of processing under Article 18 GDPR, the right to object under Article 21 GDPR as well as the right to data transferability from Article 20 GDPR insofar as there are no legal requirements to the contrary (in particular according to Articles 15, 17 GDPR, Sections 34 and 35 BDSG). Furthermore, you have the right to lodge a complaint with the competent supervisory authority in accordance with Article 22 GDPR. You can also revoke consent that you have already given at any time in accordance with Article 7 GDPR.
You can contact us at any time if you have any further questions on the subject of data protection. Responsible body in terms of data protection is:
DRP Style GmbH
Christinenstraße 25
40880 Ratingen
Represented by
Frank van Lieshaut
Phone: +49 2102 / 37000 10
Email: info@drp-original.de
Contact of the data protection officer: datenschutzbeauftragter@ciociola-gruppe.de
YOUR RIGHTS AT A GLANCE
Right to object
If your personal data is processed on the basis of legitimate interests in accordance with Article 6 Paragraph 1 Sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data in accordance with Article 21 GDPR, provided there are reasons for this, which arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which we will implement without specifying a particular situation.
If you object, we will no longer process your affected personal data unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims (Objection according to Art. 21 Para. 1 GDPR).
If you would like to make use of your right of revocation or objection, an e-mail to: info@drp-original.de is sufficient.
Access, Modification and Deletion
You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to request inspection, modification or deletion of this data. You can contact us at any time at the address given below if you have any further questions on the subject of data protection. You also have the right to lodge a complaint with the competent supervisory authority.
Right to data portability
You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another person responsible, this will only be done to the extent that it is technically feasible.
Right of appeal to the competent supervisory authority
In the event of violations of the GDPR, those affected have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged violation. The right to lodge a complaint is without prejudice to other administrative or judicial remedies.
Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke consent that you have already given at any time. An informal message by e-mail (info@drp-original.de) to us is sufficient. The legality of the data processing that took place up until the revocation remains unaffected by the revocation.
Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke consent that you have already given at any time. An informal message by e-mail (info@drp-original.de) to us is sufficient. The legality of the data processing that took place up until the revocation remains unaffected by the revocation.
If you dispute the accuracy of your personal data stored by us, we usually need time to check this. For the duration of the examination, you have the right to request that the processing of your personal data be restricted.
If the processing of your personal data happened/is happening unlawfully, you can request the restriction of data processing instead of deletion.
If we no longer need your personal data, but you need it to exercise, defend or assert legal claims, you have the right to demand that the processing of your personal data be restricted instead of being deleted.
If you have lodged an objection in accordance with Art. 21 Para. 1 GDPR, your interests and ours must be weighed up. As long as it has not yet been determined whose interests prevail, you have the right to demand that the processing of your personal data be restricted.
If you have restricted the processing of your personal data, this data - apart from its storage - may only be processed with your consent, or to assert, exercise or defend legal claims or to protect the rights of another natural or legal person, or for reasons of important public interest of the European Union or a member state.