Data protection declaration

Responsible for data processing is:
NLS Informations-Medizin GmbH
Babenbergerstrasse 21
3180 Lilienfeld
Austria
h.eder@slc-instiut.com

Telephone: 43 2762 52481

Thank you for your interest in our online shop. The protection of your privacy is very important to us. Below you will find detailed information on how we handle your data.

1. Access data and hosting

You can visit our website without providing any personal data. Each time a website is accessed, the web server only automatically saves a so-called server log file, which contains, for example, the name of the requested file, your IP address, the date and time of access, the amount of data transferred and the requesting provider (access data) and documents the access. This access data is analysed exclusively for the purpose of ensuring trouble-free operation of the site and improving our offer. This serves to safeguard our legitimate interests, which predominate in the context of a weighing of interests, in the correct presentation of our offer in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR. All access data will be deleted no later than seven days after the end of your visit to our website.

 Hosting

The services for hosting and displaying the website are partly provided by our service providers as part of processing on our behalf. Unless otherwise stated in this privacy policy, all access data and all data collected in the forms provided on this website will be processed on their servers. If you have any questions about our service providers and the basis of our cooperation with them, please use the contact option described in this privacy policy.

2. Data processing for contract processing, making contact and when opening a customer account

We collect personal data if you voluntarily provide it to us as part of your order or when contacting us (e.g. via contact form or e-mail). Mandatory fields are labelled as such, as in these cases we require the data to process the contract or to process your contact and you cannot send the order or contact without providing it. Which data is collected can be seen from the respective input forms. We use the data provided by you for contract processing and processing your enquiries in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR.
If you have given your consent to this in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR by deciding to open a customer account, we will use your data for the purpose of opening a customer account. Further information on the processing of your data, in particular on the transfer to our service providers for the purpose of order, payment and dispatch processing, can be found in the following sections of this privacy policy. After complete processing of the contract or deletion of your customer account, your data will be restricted for further processing and deleted after expiry of the retention periods under tax and commercial law in accordance with Art. 6 para. 1 sentence 1 lit. c GDPR, unless you have expressly consented to further use of your data in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration. It is possible to delete your customer account at any time and can be done either by sending a message to the contact option described in this privacy policy or via a function provided for this purpose in the customer account.

3. Data processing for the purpose of dispatch processing

In order to fulfil the contract in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR, we pass on your data to the shipping service provider commissioned with the delivery, insofar as this is necessary for the delivery of ordered goods.

 Data transfer to shipping service providers for the purpose of shipping notification

If you have given us your express consent to this during or after your order, we will pass on your e-mail address and telephone number to the selected shipping service provider in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR so that they can contact you before delivery for the purpose of delivery notification or coordination.
Consent can be revoked at any time by sending a message to the contact option described in this privacy policy or directly to the shipping service provider at the contact address listed below. After revocation, we will delete your data provided for this purpose, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.

DPD Deutschland GmbH
Wailandtstraße 1
63741 Aschaffenburg
Germany

4. Data processing for payment processing

We work with the following partners to process payments in our online shop: technical service providers, credit institutions, payment service providers.

4.1 Data processing for transaction processing

Depending on the selected payment method, we pass on the data necessary for processing the payment transaction to our technical service providers, who work for us as part of order processing, or to the commissioned credit institutions or to the selected payment service provider, insofar as this is necessary for processing the payment. This serves the fulfilment of the contract in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR. In some cases, the payment service providers collect the data required for processing the payment themselves, e.g. on their own website or via a technical integration in the ordering process. In this respect, the privacy policy of the respective payment service provider applies.
If you have any questions about our partners for payment processing and the basis of our cooperation with them, please use the contact option described in this privacy policy.

4.2 Data processing for the purpose of fraud prevention and optimisation of our payment processes

If necessary, we provide our service providers with further data, which they use together with the data necessary for processing the payment as our processors for the purpose of fraud prevention and the optimisation of our payment processes (e.g. invoicing, processing of disputed payments, accounting support). In accordance with Art. 6 para. 1 sentence 1 lit. f GDPR, this serves to safeguard our legitimate interests in our protection against fraud and in efficient payment management, which predominate in the context of a balancing of interests.

5. Advertising by email

 Email newsletter with registration

If you register for our newsletter, we will use the data required for this or separately provided by you to regularly send you our e-mail newsletter based on your consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR. You can unsubscribe from the newsletter at any time, either by sending a message to the contact option described below or via a link provided for this purpose in the newsletter. After unsubscribing, we will delete your email address from the recipient list, unless you have expressly consented to further use of your data in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.

6. Cookies and other technologies

 General information

In order to make visiting our website attractive and to enable the use of certain functions, we use technologies on various pages, including so-called cookies. Cookies are small text files that are automatically stored on your end device. Some of the cookies we use are deleted again at the end of the browser session, i.e. after you close your browser (so-called session cookies). Other cookies remain on your end device and enable us to recognise your browser on your next visit (persistent cookies).
We use such technologies that are absolutely necessary for the use of certain functions of our website (e.g. shopping basket function). These technologies are used to collect and process the IP address, time of visit, device and browser information as well as information about your use of our website (e.g. information about the contents of the shopping basket). In the context of a balancing of interests, this serves overriding legitimate interests in an optimised presentation of our offer in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR.

We also use technologies to fulfil the legal obligations to which we are subject (e.g. to be able to prove consent to the processing of your personal data) as well as for web analysis and online marketing. Further information on this, including the respective legal basis for data processing, can be found in the following sections of this privacy policy.

You can find the cookie settings for your browser under the following links Microsoft Edge™ / Safari™ / Chrome™ / Firefox™ / Opera™

If you have consented to the use of the technologies in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, you can revoke your consent at any time by sending a message to the contact option described in the data protection declaration.

7. Use of cookies and other technologies for web analysis and advertising purposes

If you have given your consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, we use the following cookies and other technologies from third-party providers on our website. The data collected in this context will be deleted once the purpose has ceased to apply and we have stopped using the respective technology. You can revoke your consent at any time with effect for the future. Further information on your cancellation options can be found in the section "Cookies and other technologies". Further information, including the basis of our cooperation with the individual providers, can be found under the individual technologies. If you have any questions about the providers and the basis of our cooperation with them, please use the contact option described in this privacy policy.

7.1 Use of Google services

We use the following technologies from Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). The information automatically collected by Google technologies about your use of our website is generally transmitted to a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA and stored there. There is no adequacy decision by the European Commission for the USA. Our cooperation with them is based on standard data protection clauses of the European Commission.  If your IP address is collected via Google technologies, it will be shortened by activating IP anonymisation before it is stored on Google's servers. Only in exceptional cases will the full IP address be transmitted to a Google server and truncated there. Unless otherwise specified for the individual technologies, data processing is carried out on the basis of an agreement concluded for the respective technology between jointly responsible parties in accordance with Art. 26 GDPR. Further information about data processing by Google can be found in Google's privacy policy.

 Google Analytics

For the purpose of website analysis, Google Analytics automatically collects and stores data (IP address, time of visit, device and browser information as well as information on your use of our website), from which user profiles are created using pseudonyms. Cookies may be used for this purpose. Your IP address will not be merged with other Google data. Data processing is carried out on the basis of an order processing agreement by Google.

For website analysis and event tracking, we use Google Ads Conversion Tracking to measure your subsequent usage behaviour if you have reached our website via a Google Ads advertisement. For this purpose, cookies may be used and data (IP address, time of visit, device and browser information as well as information on your use of our website based on events specified by us, such as visiting a website or subscribing to a newsletter) may be collected, from which user profiles are created using pseudonyms.

 YouTube video plugin

To integrate third-party content, data (IP address, time of visit, device and browser information) is collected via the YouTube video plugin in the extended data protection mode used by us, transmitted to Google and then processed by Google only when you play a video.

7.2 Other providers of web analytics and online marketing services

 Use of Vimeo video plugin for the integration of third-party content

To integrate third-party content, data (IP address, time of visit, device and browser information) is collected via the video plugin from Vimeo LLC, 555 West 18th Street, New York 10011, USA ("Vimeo"), transmitted to Vimeo and then processed by Vimeo. The data processing takes place on the basis of an agreement between jointly responsible parties in accordance with Art. 26 GDPR. Google Analytics is automatically integrated into the Vimeo video plugin. For the purpose of website analysis, Google Analytics automatically collects and stores data (IP address, time of visit, device and browser information as well as information on your use of our website), from which user profiles are created using pseudonyms. Cookies may be used for this purpose. Google Analytics is a service provided by Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). The information automatically collected by Google about your use of our website is usually transmitted to a server of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA and stored there. Your IP address is truncated before it is stored on Google's servers by activating IP anonymisation. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. We have no influence or access to the data processing by Vimeo, including the settings and results of Google Analytics. There is no adequacy decision by the European Commission for the USA. Our cooperation with them is based on standard data protection clauses of the European Commission. 

etracker

The provider of this website uses services of etracker GmbH from Hamburg, Germany(www.etracker.com) to analyse usage data. We do not use cookies for web analysis by default. If we use analysis and optimisation cookies, we will obtain your explicit consent separately in advance. If this is the case and you give your consent, cookies are used to enable a statistical analysis of the reach of this website, to measure the success of our online marketing measures and test procedures, e.g. to test and optimise different versions of our online offering or its components. Cookies are small text files that are stored by the Internet browser on the user's end device. etracker cookies do not contain any information that enables a user to be identified.

The data generated with etracker is processed and stored by etracker exclusively in Germany on behalf of the provider of this website and is therefore subject to the strict German and European data protection laws and standards. etracker has been independently audited and certified in this respect and has been awarded the ePrivacyseal data protection seal of approval.

Data processing is carried out on the basis of the legal provisions of Art. 6 para. 1 lit. f (legitimate interest) of the General Data Protection Regulation (GDPR). Our concern within the meaning of the GDPR (legitimate interest) is the optimisation of our online offering and our website. As the privacy of our visitors is important to us, the data that may allow a reference to an individual person, such as the IP address, login or device identifiers, are anonymised or pseudonymised as soon as possible. No other use, combination with other data or transfer to third parties takes place.

You can object to the data processing described above at any time. The objection has no detrimental consequences.



Further information on data protection at etracker can be found here.

8. Integration of the Trusted Shops Trustbadge

The Trusted Shops Trustbadge is integrated on this website to display our Trusted Shops seal of approval and any collected reviews as well as to offer Trusted Shops products to buyers after an order.

This serves to safeguard our legitimate interests, which predominate in the context of a balancing of interests, in optimal marketing by enabling secure shopping in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR. The Trustbadge and the services advertised with it are an offer from Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne. The Trustbadge is provided by a CDN provider (Content Delivery Network) as part of order processing. Trusted Shops GmbH also uses service providers from the USA. An appropriate level of data protection is ensured. Further information on data protection at Trusted Shops GmbH can be found here.

When the Trustbadge is accessed, the web server automatically saves a so-called server log file, which also contains your IP address, date and time of access, amount of data transferred and the requesting provider (access data) and documents the access. Individual access data is stored in a security database for the purpose of analysing security anomalies. The log files are automatically deleted no later than 90 days after creation.

Further personal data is transferred to Trusted Shops GmbH if you decide to use Trusted Shops products after completing an order or if you have already registered to use them. The contractual agreement concluded between you and Trusted Shops applies. For this purpose, personal data is automatically collected from the order data. Whether you as a buyer are already registered for product use is automatically checked using a neutral parameter, the e-mail address hashed using a cryptological one-way function. The e-mail address is converted into this hash value, which cannot be decrypted by Trusted Shops, before transmission. After checking for a match, the parameter is automatically deleted.

This is necessary for the fulfilment of our and Trusted Shops' overriding legitimate interests in the provision of the buyer protection linked to the specific order and the transactional evaluation services in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR. Further details, including on objection, can be found in the Trusted Shops privacy policy linked above and in the Trustbadge.

9. Social media

 Social plugins from Facebook

Social buttons from social networks are used on our website. These are only integrated into the page as HTML links so that no connection is established with the servers of the respective provider when our website is accessed. If you click on one of the buttons, the website of the respective social network will open in a new window of your browser where you can click on the Like or Share button, for example.

10. Contact options and your rights

As a data subject, you have the following rights

• in accordance with Art. 15 GDPR, the right to request information about your personal data processed by us to the extent specified therein;
• in accordance with Art. 16 GDPR, the right to request the immediate rectification of incorrect or incomplete personal data stored by us
• in accordance with Art. 17 GDPR, the right to request the erasure of your personal data stored by us, unless further processing is necessary
  • to exercise the right to freedom of expression and information
  • for the fulfilment of a legal obligation;
  • for reasons of public interest or
  • is necessary for the establishment, exercise or defence of legal claims;
• in accordance with Art. 18 GDPR, the right to request the restriction of the processing of your personal data, insofar as
  • the accuracy of the data is disputed by you
  • the processing is unlawful, but you oppose the erasure of the data
  • we no longer need the data, but you need it for the establishment, exercise or defence of legal claims; or
  • You have objected to the processing pursuant to Art. 21 GDPR;
• in accordance with Art. 20 GDPR, the right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request that it be transferred to another controller
• in accordance with Art. 77 GDPR, the right to lodge a complaint with a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters.

If you have any questions regarding the collection, processing or use of your personal data, information, correction, restriction or deletion of data as well as revocation of consent given or objection to a specific use of data, please contact us directly using the contact details in our legal notice.

Privacy policy created with the Trusted Shops legal text editor in cooperation with FÖHLISCH Rechtsanwälte.