Privacy Policy

1. Name and contact details of the controller

2. Contact details of the data protection officer

3. Purposes of the data processing, legal bases and legitimate interests pursued by the controller or a third party, as well as categories of recipients

3.1. Calling up our websites/applications

3.1.1. Log-Files

3.1.2. Cookies, Tracking, Social-Media-Plugins

3.1.3. Consent Management

3.2. Establishment, execution and/or termination of a contract

3.2.1. Data processing upon conclusion of the contract

3.2.2. Creditworthiness and transmission to credit agencies

3.2.3. Use of data for fraud prevention purposes

3.2.4. Transmission of data to transport service providers

3.2.5. Transfer of data to partner companies

3.3. Data processing for advertising purposes

3.3.1. Postal advertising

3.3.2. Newsletter

3.3.3. Product recommendations by e-mail

3.3.4. Competitions

3.4. Online presence and service optimization

3.4.1. Google Analytics

3.4.2. Floodlight

3.4.3. Webtrends Analytics

3.4.4. Wingify Pvt Ltd. (VWO)

3.5. Online marketing

3.5.1. Adjust

3.5.2. Google Marketing Platform

3.5.3. Google Ads Remarketing

3.5.4. Google Conversion Tracking

3.5.5. Google AdSense

3.5.6. Criteo

3.5.7. Facebook Retargeting und Conversion

3.5.8. Pinterest Retargeting (Pinterest Tag)

3.5.9. Bing Ads

3.5.10. Localytics

3.5.11. Consentric procedure of Deutsche Post AG

3.5.12. emetriq

3.5.13. RTB House

3.5.14. Affilinet (Awin)

3.5.15. Tracdelight

3.5.16. Taboola

3.5.17. Visual Media

3.5.18. Channelpilot

3.5.19. intelliAd Tracking

3.5.20. Snap Inc. (Snap Pixel and Website Custom Audiences)

3.5.21. Nitro-Tracking

3.5.22. Other advertising network purposes & affiliates

3.6. Fan pages

3.7. Social-Media-Plug-Ins

3.7.1. Facebook Connect / Login

3.8. Customer account / user account

3.9. Contacting

3.10. Payments

3.10.1. Paypal

3.10.2. Klarna payment methods

3.10.3. Ratepay invoice purchase and direct debit

3.10.4. paydirekt

4. Processor

5. Storage period and data deletion

6. Recipients outside the EU

7. Your rights

7.1. Overview

7.2. Right of objection

7.3. Right of withdrawal

7.4 Fanpages

8. Overview of cookies and other technologies

This data protection information applies to data processing by

About You SE & Co KG, legally represented by ABOUT YOU Verwaltungs SE, which is represented by the Management Board Tarek Müller, Hannes Wiese and Sebastian Betz, Domstraße 10, 20095 Hamburg
Phone: 0800 / 58 95 122
Chairman of the Supervisory Board: Sebastian Klauke
Email: [email protected]

Website: en.aboutyou.de

for the following websites / applications: en.aboutyou.de, ABOUT YOU App

You can contact the data protection officer of the data controller at

About You SE & Co. KG
attn. Sebastian Herting – Datenschutzkanzlei
Domstraße 10
20095 Hamburg Germany

Email: [email protected]

3.1. Visiting our websites/applications

3.1.1. Log files

Each time services are accessed, information is sent by the respective Internet browser of your respective end device to the server of our service and temporarily stored in logged data, the so-called log files. The data records stored in this process contain the following data, which are stored until automatic deletion: Date and time of the request, name of the requested page, IP address of the requesting device, referrer URL (origin URL from which you came to our service), the amount of data transferred, loading time, as well as product and version information of the respective browser used and the name of your access provider.
The legal basis for the processing of the IP address is Article 6 (1) f GDPR. Our legitimate interest results from the

• Ensure smooth connection establishment,
• Ensuring a comfortable use of our services,
• Evaluation of system security and stability.

A direct conclusion on your identity is not possible on the basis of the information and will not be drawn by us. The information is stored and automatically deleted after the aforementioned purposes have been achieved. The standard periods for deletion are based on the criterion of necessity.

Cookies, Tracking, Social Media Plugins

On various pages, we use cookies or similar technologies ("together also referred to as "cookies") to make visiting our services attractive and to enable the use of certain functions as well as to statistically record the use of our services. Cookies are small text files that are automatically created by your browser and stored on your end device (laptop, tablet, smartphone, etc.) when you visit and/or use our services. Cookies do not cause any damage to your end device, do not contain viruses, Trojans or other malware. Information is stored in the cookie that is related to the specific end device used. This does not mean, however, that we can gain direct knowledge of your identity and/or draw conclusions about you. Most of the cookies used are deleted at the end of the browser session (so-called session cookies). These allow us to offer, for example, the cross-page basket display, in which you can see how many items are currently in your basket and what your current purchase value is. Other cookies remain on your terminal device and enable us to recognize your terminal device the next time you visit us (so-called permanent or cross-session cookies). These cookies in particular serve to make our offer user-friendly, more effective and safer. Due to these technologies, it is possible, for example, that you receive information in our services that is specifically tailored to your interests.

We use cookies provide and optimize our services. We use a large number of cookies exclusively on the basis of your consent. An exception to this consent requirement only applies to cookies that are absolutely necessary for the provision of our services. We divide cookies and similar technologies into three categories according to their purpose:

Absolutely necessary cookies

These cookies are absolutely necessary for the function of our services. This applies, for example, to cookies that store login data after registration in our online store, so that the user remains logged in to our online store even after switching to another page, or for cookies that ensure that a user-specific configuration of the service functions (selected language, etc.) is maintained across sessions. In addition, we carry out so-called reach measurements on the basis of such cookies, with which we determine how our services are used order to be able to provide them to our users in a needs-based manner. In addition, these cookies contribute to a safe and proper use of our services. According to the law, we do not require your consent for the use of such cookies.

You can find out which cookies fall into the category of cookies that are absolutely necessary in our preference center here.

Functional cookies

With these cookies we are able to provide advanced functionalities and personalization. They may be set by us or by third parties whose services we use in our services. If you do not allow these cookies, some or all of these services may not function properly. These cookies also allow us to conduct market research.

We use these cookies only on the basis of your consent.

You can see which cookies fall into the Functional Cookies category in our preference center here.

Marketing Cookies

These cookies can be set by us or our partners via our services in order to show you relevant content/advertising on our websites as well as on third-party websites. In doing so, so-called profiles can be formed based on your interests. A direct identification of a person is usually not possible through this information, as only pseudonymous browser and/or device information is used. If you do not allow these cookies, you will experience less relevant content/advertising tailored to your interests.

We use these cookies only on the basis of your consent.

You can see which cookies fall into the marketing cookie category in our preference center here.

---

Insofar as we use cookies on the basis of your consent, you grant this consent by clicking on the "Ok" button on the banner displayed during your visit when you visit our services - if necessary after you have made certain settings. If you do not wish to give your consent, you can simply click on "settings" and "confirm selection".

By clicking on "Ok", you consent to the use of cookies. On the other hand, we obtain in this way - to the extent necessary - your consent to the processing of your data based on these cookies, including the transfer of such data to our marketing partners (third parties). Our marketing partners also use cookies and other technologies for personalization, measurement and analysis of content/advertising.

---

Note right of withdrawal

You may withdaw your consent at any time in whole or in part at any time with effect for the future by changing your settings in our preference center here.

---

Browser settings

Of course, you can also set up your browser so that it does not place cookies on your end device. The help function in the menu bar of most web browsers explains how you can prevent your browser from accepting new cookies, how you can have your browser notify you when you receive a new cookie, or how you can delete all cookies you have already received and block all further cookies.

In Internet Explorer:

1. Select in the menu “extras” > "Internet Options".
2. Click on the tab "Privacy".
3. Now you can make the security settings for the Internet zone. Here you can set whether and which cookies should be accepted or rejected.
4. Confirm the setting with "OK".

In Firefox:

1. Select in the menu “Extras” > "Settings".
2. Click on the tab "Privacy".
3. In the drop-down menu, select the entry "Create according to user-defined settings".
4. Now you can set whether to accept cookies, how long you want to keep these cookies and add exceptions to which websites you always or never want to allow cookies to be used.
5. Confirm the setting with "OK".

In Google Chrome:

1. Click the Chrome menu on the browser toolbar.
2. Now select "Settings".
3. Click on "Show advanced settings".
4. Click “Privacy” > "Content Settings".
5. Under "Cookies" you can make the following settings for cookies:
• Delete cookies
• Block cookies by default
• Delete cookies and website data by default after exiting the browser
• Allow exceptions for cookies from specific websites or domains

However, we would like to point out that in this case you may not be able to use all functions of our services to their full extent.

Overview of cookies and other technologies

An overview of the cookies and other technologies used on our pages can be found here.

3.1.3. Consent Management

We use a consent management tool ("OneTrust"), provided by OneTrust, LLC (UK headquarters: Cannon Green, 27 Bush Lane, London EC4R 0AA, UK and US headquarters: 1350 Spring Street NW, Suite 500, Atlanta, Georgia 30309, USA ), to manage your preferences and document consent from users of our services. OneTrust is used, among other things, to store cookie settings for the entire website. OneTrust stores information about the categories of cookies used by the website and whether users have given or revoked their consent to the use of each category. This allows us to prevent cookies in each category from being set in the user's browser if consent is not given. OneTrust uses cookies for information storage, which have a normal duration of one year, so that the preferences of returning visitors are stored.

The legal basis for this data processing is Article 6 (1) c, f GDPR.

3.2. Establishment, execution and/or termination of a contract

3.2.1. Data processing upon conclusion of the contract

If you register with one of our services and/or enter into another contract with us (e.g. buy a product from us), we process the data required for the conclusion, performance or termination of the contract. This includes:

• Salutation
• First name, last name
• Invoice and delivery address
• Email address
• Billing and payment information
• Date of birth
• Phone number
• Shop settings

The legal basis for this is Article 6 (1) a and b GDPR, i.e. you provide us with the information on the basis of the respective contractual relationship (e.g. management of the customer/user account, processing of a purchase contract) between you and us. We are also obliged to process your e-mail address in the event of a purchase via our websites/apps due to legal requirements in the German Civil Code (BGB) to send an electronic order confirmation (Article 6 (1) c GDPR).

We store the data collected for the processing of the contract - unless we use it for our own marketing purposes - for the duration of the respective contract and until the expiry of the respective statutory or possible contractual warranty and guarantee rights. After expiry of this period, we retain the information required by commercial and tax law relating to the contractual relationship for the periods specified by law. For this period, the data will be processed again solely in the event of an audit by the tax authorities.

Furthermore, the following data processing is required for the execution of a purchase contract via our services:

Payment data will be passed on to payment service providers commissioned by us to process the payment(s). We pass on details of the delivery address to logistics companies and shipping partners commissioned by us so that the order can be delivered. To ensure that the goods are delivered according to your wishes, we may transmit your e-mail address and, if necessary, the telephone number to the logistics company and / or shipping partners contracted by us, which take over the delivery. If necessary, they will contact you in advance of the delivery to coordinate the details of the delivery with you. The respective data will be transmitted solely for the respective purpose and will not be used for other purposes after delivery and will be deleted after expiration of existing commercial and tax retention obligations.

3.2.2. Creditworthiness and transfer to credit agencies

In order to offer you the best possible selection of payment methods, we cooperate with our partner RatePAY GmbH (hereinafter: "RatePAY"), Franklinstraße 28-29, 10587 Berlin, Germany (http://www.ratepay.de/). When you select the payment method invoice via RatePAY, your personal information (first name and surname, address data, date of birth and e-mail address) is transferred to RatePAY on the basis of your express consent, which is then evaluated on the basis of recognized mathematical-statistical methods. The use of data for risk assessment when using a RatePAY payment method, as described in the RatePAY Privacy Policy, also applies to assessment for the purpose of optimal selection of payment methods.

In case of choosing payment method invoice via Ratepay you give the following consent:

---

Privacy Policy for purchase on account

•  I hereby declare my consent to the use of my data for a credit assessment in accordance with the RatePAY Privacy Policy and the ABOUT YOU AG & Co. KG Privacy Policy. I can withdraw my consent at any time with effect for the future.

---

The legal basis for this data processing is Article 6 (1) a GDPR.

3.2.3. Use of data for fraud prevention purposes

The information you provide in the context of an order may be used to check whether an atypical order transaction has occurred (e.g. simultaneous ordering of a large number of goods to the same address using different customer accounts). In principle, we have a legitimate interest in carrying out such a check. The legal basis for the processing is Article 6 (1) f GDPR.

3.2.4. Transmission of information to transport service providers/shipping partners

For the purpose of delivery of ordered goods, we work together with logistics service providers/transport companies and/or shipping partners: The following data may be transmitted to them for the purpose of delivery of the ordered goods or for the purpose of shipment notification: First name, last name, postal address and, if applicable, the e-mail address and, if applicable, the telephone number. The legal basis for the processing is Art. 6 (1) b GDPR.

3.2.5. Transmission of information to partner companies

Through our services, you have the option to take advantage of offers from third-party companies. In these cases, you may conclude a contract directly with one of our partners, to whom the data required for the execution of the contract (e.g. first name, last name, billing and delivery address, e-mail address, billing and payment data, date of birth, phone number) will be transmitted. Such advantage offers of our partners are recognizable and marked as partner offers.

3.3. Data processing for advertising purposes

3.3.1. Postal advertising

In principle, we have a legitimate interest in using certain information for marketing purposes in order to be able to make you relevant offers. We process the following information for postal advertising for our own marketing purposes as well as for marketing purposes of third parties: first name, last name, postal address, year of birth.

We are also entitled to store further personal information collected about you in compliance with the legal requirements for our own marketing purposes and for the marketing purposes of third parties. The aim is to send you advertising that is geared solely to your actual or perceived needs/interests and accordingly not to bother you with advertising that is not relevant to you.

A transfer of the data stored to third parties does not take place. Furthermore, About You pseudonymizes / anonymizes personal data collected about you for the purpose of using the pseudonymized / anonymized data for its own marketing purposes as well as for marketing purposes of third parties (advertisers).

The pseudonymized / anonymized data can also be used to advertise to you individually online, whereby the control of the advertising can be carried out by third-party service providers and/or agencies. The legal basis for the use of personal data for marketing purposes is Art. 6 (1) f GDPR.

---

Reference to the right of objection
You may object to the use of your personal information for the aforementioned marketing purposes at any time free of charge with effect for the future at [email protected]

If you object, your data will be blocked for further data processing for advertising purposes. We would like to point out that in exceptional cases, advertising material may still be sent temporarily after receipt of your objection. This is technically due to the necessary lead time within the selection process and does not mean that we have not implemented your objection.

---

3.3.2. Newsletter

As part of our services, we offer you the opportunity to subscribe to our newsletter. In order to be able to ensure that no mistakes have been made when entering the e-mail address, we use the so-called double opt-in procedure (DOI procedure): After you have entered your e-mail address in the registration field and given your consent to receive our newsletter, we will send you a confirmation link to the e-mail address you provided. Only when you click on this confirmation link will your e-mail address be added to our distribution list for sending our newsletter. The legal basis for this data processing is Article 6 (1) a GDPR.

---

Reference to the right of withdrawal
You can withdraw your consent at any time with effect for the future by sending a message to [email protected] or using the unsubscribe option at the end of each newsletter.

---

3.3.3. Product recommendations by e-mail

As an existing customer, you will regularly receive product recommendations from us via e-mail. You will receive these product recommendations from us regardless of whether you have subscribed to a newsletter. Here, we use the e-mail address provided by you in the context of the purchase to advertise our own goods and / or services that are similar to those that you have purchased from us based on an order already placed. The legal basis for this data processing is Article 6 (1) f GDPR.

---

Reference to the right of objection
You may object to our product recommendations at any time free of charge with effect for the future by sending a message to [email protected] or at the end of each product recommendation e-mail.

---

3.3.4. Competitions

If you register/participate in competitions organized by ABOUT YOU (hereinafter referred to as "participation"), we will use the data you provide when participating in the respective competitions for the purpose of executing the participation agreement, in particular to notify you of the prize and, if applicable, to advertise our offers and/or offers of our competitions partners. You can find detailed information in the respective conditions of participation for the respective competitions. The legal basis for this data processing is Article 6 (1) a GDPR, Article 6 (1) b GDPR and Article 6 (1) f GDPR.

3.4. Online presence and service optimization

3.4.1. Google Analytics

For the purpose of demand-oriented design and continuous optimization of our pages, we use Google Analytics, a web analytics service provided by Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland ("Google"), on the basis of Article 6 (1) f GDPR.

In this context, Google creates pseudonymized usage profiles on our behalf by means of cookies. The information generated during your use of this website, such as

• Browser type/version,
• Operating system used,
• Referrer URL (the previously visited page),
• Host name of the accessing computer (IP address),
• Time of the server request

Google will be used on our behalf to evaluate your use of the website, to compile reports on website activity and to provide us other services activity and internet usage. The IP address transmitted by your browser as part of Google Analytics will only be stored in abbreviated form and the information about your use of the website will not be merged with other Google data.

You may refuse the use of cookies (including Google Analytics cookies) by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent the collection and processing of information generated by your use of this website by Google by downloading the browser plugin available at the following link and install: tools.google.com/dlpage/gaoptout?hl=en.

As an alternative to the browser add-on, especially for browsers on mobile devices, you can also prevent the collection by Google Analytics by clicking on this link. An opt-out cookie will be set, which prevents the future collection of your data when visiting this website. The opt-out cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you must set the opt-out cookie again. For more information on data protection in connection with Google Analytics, please visit the Google Analytics website.

3.4.2. Floodlight

We use "DoubleClick Floodlight" on our website, a service of Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland ("Google"). Google stores and processes information about your user behavior on our website. We use DoubleClick Floodlight for marketing and optimization purposes, in particular to analyze the use of our website and to continuously improve individual functions and offers as well as the user experience. Through the statistical evaluation of user behavior, we can improve our offer and make it more interesting for you as a user. This is also our legitimate interest in the processing of the above data by the third-party provider. The legal basis for this data processing is Article 6 (1) a GDPR.

We only use the cookies required for this service (so-called marketing cookies) with your consent. You can revoke your consent at any time in our preference center .

Further information from the third-party provider on data protection can be found on the following website: https://www.google.com/intl/de/policies/privacy/.

3.4.3. Webtrends Analytics

On this website, anonymized data is collected and stored by Webtrends Analytics, a web analytics service provided by Webtrends EMEA Acquisition Ltd, Mallard Court, Market Square Staines, Middlesex, TW18 4RH England ("Webtrends"). This data is used to analyze visitor behavior. Cookies may be used for this purpose. These are small text files that are stored locally on the website visitor's computer and thus enable recognition when visiting our website again. The IP address of the site visitor is shortened by Webtrends before storage and thus anonymized.

The legal basis for this data processing is Article 6 (1) a GDPR.

You can revoke your consent at any time in our preference center.

3.4.4. Wingify Pvt Ltd. (VWO)

This website performs analyses of user behavior via so-called A/B testing. We can show you our websites with slightly different content, according to a profile assignment. This allows us to analyze our offer, improve it regularly and make it more interesting for you as a user. The legal basis for the use of A/B testing is Article 6 (1) f GDPR.

For this evaluation, cookies from our service provider, the TOP FLOOR (14th), KLJ TOWER NORTH B-5, NETAJI SUBHASH PLACE, PITAMPURA DELHI North West DL 110034 India are stored on your computer. We automatically store the information collected in this way on a server in Germany. Before the analyses are carried out, the IP addresses are processed in a shortened form; it is not possible to relate them directly to individuals. The IP address transmitted by your browser is not merged with other data collected by us.

You can object to the use of A/B testing at any time by entering the Internet address of our website in the field on the following website of the providerWingify (VWO) and activating the link generated afterwards: https://vwo.com/opt-out/ or by using our preference center. Information about the privacy policy of the third party provider can be found here: https://vwo.com/privacy-policy/ .

You can object to the use of A/B testing at any time by entering the Internet address of our website in the field on the following website of the providerWingify (VWO) and activating the link generated afterwards: https://vwo.com/opt-out/ or by using our preference center.

Information about the privacy policy of the third party provider can be found here: www.vwo.com/privacy-policy/.

3.5. Online marketing

We use various information on our pages for marketing purposes. Our goal is to show you only advertising that is oriented to your actual or perceived interests and you do not have to deal with ads that are not interesting for you. For this purpose, we use various forms of advertising (e.g. retargeting) and technologies from ABOUT YOU and third parties, some of which process data as processors for us, and some of which process data as data controllers. A processor is a natural or legal person, authority, institution or other body that processes personal data on behalf of the data controller. Processors do not use the data for their own purposes, but perform data processing exclusively for the controller. This enables us to target users with online advertising not only on our websites, but also on the websites of our partners, who have already shown interest in our store and our products. We know from studies that the display of personalized, interest-related advertising is more interesting for Internet users than advertising that has no such personal reference.

If cookies are used in connection with online marketing (functional cookies or marketing cookies), we only use them with your consent. You can revoke your consent at any time in our preference center.

3.5.1. Adjust

We use the usage evaluation and analysis technology Adjust of adjust GmbH, Saarbrücker Str. 36, 10405 Berlin. The Adjust service has been tested and certified according to the ePrivacyseal (European Seal for your Privacy) (see https://www.eprivacy.eu/kunden/vergebene-siegel/). Adjust collects data on interaction with our advertising materials, install and event data of the app and provides them as anonymized evaluations. We use this information to measure the success of our app marketing campaigns, for our own market research and to optimize the app. For these evaluations, Adjust uses your IDFA or Android ID as well as your anonymized IP and MAC address. The collected information is additionally forwarded to appropriate providers for the execution and optimization of our app advertising campaigns. The details of the providers used can be found in the respective sections of our privacy policy. The legal basis for the data processing is Article 6 (1) a GDPR.

The collection, analysis and use of data can be deactivated for the websites in the future at https://www.adjust.com/opt-out/). You can revoke your consent at any time in our preference center.

We only use the cookies required for this service (so-called functional cookies) with your consent.

3.5.2. Google Marketing Platform

This website uses the online marketing tool Google Marketing Platform (“GMP”) of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google").

Google uses cookies to serve ads that are relevant to users, to improve campaign performance reports, or to prevent a user from seeing the same ads more than once. Via a cookie ID, Google records which ads are displayed in which browser and can thus prevent them from being displayed more than once.

In addition, Google can use cookie IDs to record so-called conversions that are related to ad requests. This is the case, for example, when a user sees a GMP ad and later, using the same browser, calls up the advertiser's website and makes a purchase via this website. According to Google, GMP cookies do not contain any personal information.

Due to the marketing tools used, your browser automatically establishes a direct connection with the Google server. We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform according to our knowledge as follows: Through the integration of GMP, Google receives the information that you have called up the corresponding part of our website or clicked on an advertisement from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or are not logged in, it is possible that the Google will find out and store your IP address. In the context of the use of GMP, personal data may also be transmitted to the servers of Google LLC. in the USA. The legal basis for the data processing is Article 6 (1) a GDPR.

Here you can find more information about Google’s privacy policy: https://www.google.de/policies/privacy/..

We only use the cookies required for this service (so-called marketing cookies) with your consent. You can revoke your consent at any time in our preference center.

3.5.3. Google Ads Remarketing

Our website uses the functions of Google Ads Remarketing, with which we advertise our websites in Google search results, as well as on third-party websites. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). For this purpose, Google sets a cookie in the browser of your terminal device, which automatically enables interest-based advertising by means of a pseudonymous cookie ID and on the basis of the pages you visit.

Additional data processing will only take place if you have consented to Google linking your internet and app browsing history to your Google account and using information from your Google account to personalize ads that you view on the web. In this case, if you are logged in to Google while visiting our website, Google will use your data together with Google Analytics data to create and define target group lists for cross-device remarketing. In the context of the use of Google Ads Remarketing, personal data may also be transmitted to the servers of Google LLC. in the USA. The legal basis for the data processing is Article 6 (1) a GDPR.

You can permanently disable the setting of cookies for ad preferences by downloading and installing the browser plug-in available at the following link https://www.google.com/settings/ads/onweb/.

Further information and the privacy policy regarding advertising and Google can be found here: https://www.google.com/policies/technologies/ads/.

We only use the cookies required for this service (so-called marketing cookies) with your consent. You can revoke your consent at any time in our preference center.

3.5.4. Google Conversion Tracking

Furthermore, we use the so-called conversion tracking as part of the use of the Google AdWords service. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). When you click on an ad placed by Google, a cookie for conversion tracking is stored on your computer/end device. These cookies lose their validity after 30 days, do not contain any personal data and are therefore not used for personal identification. The information obtained using the conversion cookie is used to create conversion statistics for AdWords customers who have opted for conversion tracking.

The legal basis for this data processing is Article 6 (1) a GDPR.

You can disable interest-based ads on Google as well as interest-based Google ads on the web (within the Google display network) in your browser by activating the "Off" button at www.google.de/settings/ads or by deactivating them at www.aboutads.info/choices/. You can find more information about your settings options in this regard and Google's data protection at www.google.de/intl/de/policies/privacy/?fg=1. You can revoke your consent at any time in our preference center.

3.5.5. Google AdSense

We use the online advertising service Google AdSense, through which you can be presented with advertising based on your interests. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). We pursue the interest of showing you advertising that could be of interest to you, in order to make our services more interesting for you. For this purpose, statistical information about you is collected and processed by our advertising partners. These advertisements are recognizable via the reference "Google ads" in the respective advertisement.

Google receives the information that you have visited our website. For this purpose, Google uses a web beacon to set a cookie on your computer. If you are logged in with your Google account, your data can be directly assigned to it. It is possible that this data will be passed on to contractual partners of Google, other third parties and authorities. The legal basis for the processing of your data is Article 6 (1) cl. 1 a GDPR.

We only use the cookies required for this service (so-called marketing cookies) with your consent. You can revoke your consent at any time in our preference center.

Further information on the purpose and scope of the data collection and its processing, as well as further information on your rights in this regard and setting options for protecting your privacy can be found here: https://www.google.de/intl/de/policies/technologies/ads.

3.5.6. Criteo

This website integrates the retargeting technology of Criteo SA, 32 Rue Blanche, 75009 Paris. By using this technology, it is possible to display advertisements on third-party sites (so-called publisher sites) for products that you have viewed on this website. Criteo collects information about your usage behavior on this website through the use of tracking cookies and similar technologies that are placed in your browser and through the use of advertising IDs in environments that do not support cookies - for example, apps. These technologies allow Criteo to analyze trends and identify the interests of individual users with respect to websites and apps. Criteo uses these technologies to tag visitors on its partners' websites and apps. Users tagged by Criteo receive a technical ID. At no time does Criteo collect personal data that makes identification possible, such as names or addresses. Criteo only analyzes the products viewed or the search behavior and the pages visited on the website of the partner for which Criteo extradites advertising. In order to extradite personalized advertising to you and provide you with a seamless online experience, Criteo may synchronize the IDs of the different browsers you use. ("ID Synchronization") Due to its ID synchronization technology, Criteo is always able to provide you with the most relevant ads - regardless of the browser or device you are using - without Criteo having to collect and process personal data such as names or addresses. For this purpose, Criteo uses exact linking methods based on the technical data collected by means of the Criteo technologies used - such as the IDs of our advertising partners or encrypted e-mail addresses that the partners pass on to Criteo. For more information about Criteo's privacy practices, please visit https://www.criteo.com/de/privacy/.

The legal basis for this data processing is Article 6 (1) a GDPR.

We only use the cookies required for this service (so-called marketing cookies) with your consent. You can object to the processing of your data for the pseudonymous analysis of your surfing behavior by Criteo at any time by using the following link to unsubscribe. https://www.criteo.com/de/privacy/ or by revoking your consent in our preference center.

3.5.7. Facebook Retargeting and Conversion

We use the pixel of Facebook Ireland Limited (website custom audience pixel). Through this pixel, information about the use of this website (e.g. information about viewed articles) is collected by ABOUT YOU and Facebook Ireland Limited in joint responsibility and transmitted to Facebook Ireland Limited. This information can be assigned to you with the help of further information that Facebook Ireland Limited has stored about you, e.g. due to your ownership of an account on the social network "Facebook". On the basis of the information collected via the pixel, interest-related advertisements can be displayed to you in your Facebook account (retargeting). The information collected via the pixel can also be aggregated by Facebook Ireland Limited and the aggregated information can be used by Facebook Ireland Limited for its own web purposes as well as for advertising purposes of third parties. For example, Facebook Ireland Limited may infer certain interests from your browsing behavior on this website and may also use this information to promote third-party offers. Facebook Ireland Limited may also combine the information collected via the pixel with other information that Facebook Ireland Limited has collected about you via other websites and / or in connection with the use of the social network "Facebook", so that a profile about you can be stored at Facebook Ireland Limited. This profile can be used for advertising purposes. Facebook Ireland Limited is solely responsible for the permanent storage and further processing of the tracking data collected via the website custom audience pixel used on this website.

We have also enabled automatic advanced matching as part of the Facebook Pixel feature. This feature of the pixel allows us to send hashed e-mails, name, gender, city, state, zip code and date of birth or phone number as additional information to Facebook, provided that you have provided us with this data and have given your consent for this. This activation enables us to tailor advertising campaigns on Facebook even more precisely to people who are interested in our services or products.

The legal basis for this data processing is Article 6 (1) a GDPR.

You can find more information about data protection at Facebook Ireland Limited at https://www.facebook.com/policy.php. Here you will also find the possibility of asserting your data subject rights (e.g. right to erasure) against Facebook Ireland Limited. We only use the cookies required for this service (so-called marketing cookies) with your consent. You can revoke your consent at any time in our preference center.

3.5.8. Pinterest Retargeting (Pinterest Tag)

We use the pixel (Pinterest Tag) of Pinterest Europe Ltd. (Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland). Through this pixel, information about usage (e.g. information about viewed items) is collected jointly by Pinterest Europe Limited and ABOUT YOU and transmitted to Pinterest Europe Limited. The further processing of the data transmitted to Pinterest Europe Limited is the sole responsibility of Pinterest Europe Limited under data protection law. This information transmitted to Pinterest Europe Limited can be assigned to you with the help of further information that Pinterest Europe Limited has stored about you, e.g. due to your ownership of an account on the social network "Pinterest". On the basis of the information collected via the pixel, interest-related advertisements can be displayed to you in your Pinterest account (retargeting). The information collected via the pixel can also be aggregated by Pinterest Europe Limited and the aggregated information can be used by Pinterest Europe Limited for its own advertising purposes as well as for advertising purposes of third parties. For example, Pinterest Europe Limited may infer certain interests from your browsing behavior on this website and may also use this information to promote third-party offers. Pinterest Europe Limited may also combine the information collected via the pixel with other information that Pinterest Europe Limited has collected about you via other websites and / or in connection with the use of the social network "Pinterest", so that a profile about you can be stored at Pinterest Europe Limited. This profile can be used for advertising purposes. The legal basis for this data processing is Article 6 (1) a GDPR.

You can find more information about data protection at Pinterest Europe Limited here: https://policy.pinterest.com/de/privacy-policy.

Here you can also assert your data subject rights (e.g. right to erasure) with regard to the data that Pinterest Europe Limited processes as the data controller. We only use the cookies required for this service (so-called marketing cookies) with your consent. You can revoke your consent at any time in our preference center.

3.5.9. Bing Ads

This website uses the conversion tracking technology "Bing Ads" of Microsoft (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA). Microsoft Bing Ads sets a cookie on your computer if you have accessed our website via a Microsoft Bing ad. These cookies lose their validity after 180 days and are not used for personal identification. If the user visits certain pages of this website and the cookie has not yet expired, Microsoft and we can recognize that the user clicked on the ad and was redirected to this page (conversion page). If personal data is processed in this course, this is done in accordance with Article 6 (1) a GDPR.

The information collected using the conversion cookie is used to create conversion statistics, i.e. to record how many users reach a conversion page after clicking on an ad. This tells us the total number of users who clicked on our ad and were redirected to a page tagged with a conversion tracking tag. However, we do not receive any information that can be used to identify users personally.

You can find more information about the Microsoft Bing Ads privacy policy at the following web address: https://privacy.microsoft.com/de-de/privacystatement . We only use the cookies required for this service (so-called functional cookies) with your consent. You can revoke your consent at any time in our preference center

3.5.10. Localytics

Localytics is an analytics tool offered and operated by Char Software Inc. based in Boston MA, USA. Localytics records data that is generated during the use of our apps. This includes user actions related to the use of the app (e.g. opening the app, calling up offer pages) as well as interaction (view, click) with advertising materials delivered via Localytics (push messages and in-app messages). Localytics uses the collected data to segment users, which is the basis for the delivery of in-app advertisements and push messages. In this way, Localytics enables us to present you with content and offers that are increasingly appropriate to your usage habits over the course of your app usage. In order to measure and optimize the success of the provided ads, Localytics records data about purchases (product, price) within the app. As soon as a user logs in or registers in the app, this is also recorded. The information is linked to the so-called "Unique Installation ID", an identification of the individual installation that Localytics sets itself. More information about data protection at Localytics is available at https://www.localytics.com/privacy-policy/. The legal basis for this data processing is Article 6 (1) a GDPR. We only use the cookies required for this service (so-called functional cookies) with your consent. You can revoke your consent at any time in our preference center.

3.5.11. Consentric procedure of Deutsche Post AG

Our website uses the Consentric procedure of Deutsche Post AG to determine statistical data on cross-media media usage. Your delivery or billing address is assigned to a Deutsche Post Direkt microcell (Ø 6.6 households) and this code number is stored in encrypted form. In addition, a cookie is stored in the PC or other device used by you. IP addresses are not stored in the process and are immediately anonymized. The cookie, which has a lifespan of three months, is used to record how often you visit the websites participating in the measurement. This information is then aggregated on the basis of the microcells already mentioned.

The aim of the measurement is to statistically determine the activation performance of physical advertising on a website. Specifically, the aim is to determine how many people who have been sent a catalog (or other advertising material) have subsequently visited the website of the company concerned. At no time are individual users identified by name. Your identity always remains protected.

The legal basis for this data processing is Article 6 (1) a GDPR. We only use the cookies required for this service (so-called functional cookies) with your consent. You can revoke your consent at any time in our preference center.

3.5.12. emetriq

This website uses pixels from emetriq GmbH, Vorsetzen 35, 20459 Hamburg. These allow us to target those Internet users with advertising who have already shown interest in our store and our products. For this purpose, information about your usage behavior (e.g. page viewed, articles viewed, etc.) is collected during your visit to our website and the websites of other providers and summarized under an ID in the cookie. On the basis of the shop-movement data and, if applicable, the data on emetriq banners seen and clicked on in our store, an individual number is calculated as the "rating" of the user and stored by emetriq. On the basis of these ratings, our campaigns are controlled via emetriq or the individual playing of users with banners. Your IP address is not stored.

We only use cookies required for this service (so-called marketing cookies) with your consent.

You can revoke your consent to the pseudonymous analysis of your surfing behavior by emetriq at any time by using the following unsubscribe link: https://www.emetriq.com/opt-out/ or by revoking your consent in our preference center.

3.5.13. RTB House

On our website we use the technology of RTB House S.A., 61/101 Złota Street, 00-819 Warsaw, Poland. This technology enables us to use pixels and cookies to point you to further content within our website or on third-party websites that may also be of interest to you (retargeting). Cookies are used in this context. The recommendations integrated by RTB House are determined on the basis of your previously viewed content. The content is technically controlled and delivered automatically by RTB House. The display takes place on a pseudonymous basis.

The information generated by the cookie about your use of this website, such as browser type/version, operating system used, referrer URL (the previously visited page), time of server request are transmitted to the server of RTB House and stored there.

You can find more information about RTB House's privacy policy here: https://www.rtbhouse.com/privacy/.

The legal basis for this data processing is Article 6 (1) a GDPR. We only use the cookies required for this service (so-called marketing cookies) with your consent.

You can object to tracking for the display of interest-based recommendations by RTB House at any time via the "Opt-out" field within RTB House's privacy policy or revoke your consent to preference centers.

3.5.14. Affilinet (Awin)

For the correct recording of sales and/or leads, affilinet GmbH, Sapporobogen 6-8, 80637 Munich, Germany, sets a cookie on the end device of a user. This cookie is set by the domain parners.webmaster-plan.com or banners.webmasterplan.com. The cookies used by affilinet are accepted in the default setting of the Internet browser. If you do not wish these cookies to be stored, please deactivate the acceptance of cookies from the corresponding domains in your Internet browser. affilinet cookies only store the ID of the referring partner and the order number of the advertising material (banner, text link or similar) clicked on by the visitor, which are required for payment processing. When a transaction is concluded, the partner ID is used to be able to allocate the commission to be paid to the mediating partner. The legal basis for this data processing is Article 6 (1) f GDPR.

Details on data protection can be found at: https://www.awin.com/de/rechtliches/privacy-policy-DACH.

We only use the cookies required for this service (so-called functional cookies) with your consent. You can revoke your consent at any time in our preference center.

3.5.15. Tracdelight

Our website is a member of the affiliate network" tracdelight", which is operated by Tracdelight GmbH, Arabellastr. 23, 81925 Munich (hereinafter" tracdelight"). tracdelight sets a cookie when you click on a product embedded on a third-party site. In case of a later product purchase, this enables the assignment to the respective affiliate in order to be able to assign the commission to be paid to the mediating partner. The assignment of transactions by means of tracking is necessary in order to be able to properly invoice the advertising service. There is neither profiling nor processing for advertising purposes. Details on data collection, processing and use by tracdelight can be found in the tracdelight privacy policy https://www.tracdelight.com/privacy.

The legal basis for data processing is Article 6 (1 ) cl.1 f GDPR. Our legitimate interest follows from the data collection purposes listed above.

3.5.16. Taboola

We use a cookie on our website of Taboola Inc. ("Taboola", Oneustonsq, 40 Melton Street, 13th Floor, London, NW1 2FD). Through Taboola, we can recommend content that matches your personal interests and thus create an individual offer for you. Taboola uses cookies to determine which websites you visit frequently and how you move around our website. You can find more information about Taboola at https://www.taboola.com/privacy-policy . In addition, you can use the opt-out function of Taboola here.

The legal basis for data processing is Article 6 (1) a GDPR.

We only use the cookies required for this service (so-called marketing cookies) with your consent. You canrevokeyour consent at any time in our preference center.

3.5.17. Visual Meta

We use a cookie on our website of Visual Meta GmbH ("VM", Alexanderstraße 1-5, 10178 Berlin, Germany), the provider of the portals LadenZeile and ShopAlike. This cookie is executed on the user's device upon completion of an order process. Anonymous data about the order process (e.g. value of the shopping cart) is transmitted to your device and from there to VM. VM records your IP address in pseudonymized form. This is done with legitimate interest to allocate sales, for marketing purposes and possibly to exercise civil claims. VM deletes the data as soon as it is no longer needed for these purposes. Please refer to VM's privacy policy at https://www.ladenzeile.de/datenschutzerklaerung.html . If you do not agree with the tracking, you can prevent this in the browser via the do-not-track setting or click here.

The legal basis for data processing is Article 6 (1) a GDPR.

If you want to change your cookie settings, please click here.

3.5.18. Channelpilot

This website uses ChannelPilot, an online marketing tool of Channel Pilot Solutions GmbH (Überseeallee 1, 20457 Hamburg, Germany). Channel Pilot uses information on our behalf (browser type/version, referrer URL (the previously visited page), host name of the accessing computer (IP address), time of server request to evaluate the performance of connected online marketing channels (e.g. price search engines). You can prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to ChannelPilot as well as the processing of this data by ChannelPilot by using the opt-out option available at the following link: https://www.channelpilot.de/optout . An opt-out cookie will be set that prevents the future collection of your data when visiting this website. The opt-out cookie is only valid in the last browser used. If you delete the cookies in this browser, you must set the opt-out cookie again. Further information on data protection in connection with ChannelPilot can be found at https://www.channelpilot.de/datenschutz.

The legal basis for data processing is Article 6 (1) a GDPR and f GDPR. Our legitimate interest results from the data collection purposes listed above.

We only use the cookies required for this service (so-called marketing cookies) with your consent. You can revoke your consent at any time in our preference center.

3.5.19. intelliAd Tracking

This website uses the web analysis service with bid management of diva-e Products GmbH, Sendlinger Str. 7, 80331 Munich. For the purpose of demand-oriented design as well as optimization of this website, anonymized usage data is collected and stored in aggregated form and usage profiles are created from this data using pseudonyms. When intelliAd tracking is used, cookies are stored locally. The anonymized usage data and profiles can be used both by the website provider and by other intelliAd customers to identify usage interests, without it being possible to draw conclusions about your identity as a website visitor. The legal basis for data processing is Article 6 (1) a GDPR. You can revoke your consent at any time in our preference center.

3.5.20. Snap Inc. (Snap Pixel and Website Custom Audiences)

We use the so-called "Snap Pixel" of the social network Snapchat, which is operated by Snap Inc., Market Street, Venice, CA 90291, USA ("Snapchat"), to analyze and optimize our website and services.

By means of the Snap pixel, it is possible for Snapchat, on the one hand, to determine the visitors to our website as a target group for the display of ads (so-called "Snapchat ads"). Accordingly, we use the Snapchat pixel to display the Snapchat ads placed by us only to those Snapchat users who have also shown an interest in our website or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited) that we transmit to Snapchat (so-called "Custom Audiences"). With the help of the Snap Pixel, we also want to ensure that our Snapchat ads correspond to the potential interest of the users and do not have a harassing effect. By means of the Snap Pixel, we can also track the effectiveness of the Snapchat ads for statistical and market research purposes by seeing whether users were redirected to our website after clicking on a Snapchat ad (so-called "conversion").

The processing of data by Snapchat takes place within the framework of Snapchat's data privacy policy, which can be accessed here: https://www.snap.com/en-US/privacy/privacy-center/. The legal basis for data processing is Article 6 (1) a GDPR. We only use the cookies required for this service (so-called marketing cookies) with your consent. You can revoke your consent at any time in our preference center.

3.5.21. Nitro-Tracking

On our website, information about your behavior in our services is collected based on your consent (Article 6 (1) a GDPR). This information may be combined with information about your surfing behavior on other websites (tracking data). In addition, data is collected on this website when you create a customer account and/or place an order with us. Data is also collected during the processing of contracts concluded via this website (customer account / contract and processing data). This data can be combined with tracking data and other customer account / contract / and settlement data. The tracking data and the customer account / contract and settlement data are stored anonymously with an independent data trustee. Personal data, such as your name, e-mail address, date of birth, etc. are not transmitted. The data trustee creates information about your preferences (e.g. fashion affinity) based on the anonymized data received. No information on particularly sensitive data (e.g. political views, state of health) is collected and no such sensitive data is used in the process of creating preferences. This information about your preferences may be used by the following companies: Otto Group Media GmbH, Werner-Otto-Strasse 1-7, 22179 Hamburg Ströer SSP GmbH, St.-Martin-Strasse 106, 81669 Munich, Germany, to enable third parties (advertisers) to display individualized advertisements on third-party websites ("publishers"). In this context, the data is not passed on to the advertisers or the website providers (publishers). Insofar as the information about the preferences is stored by Otto Group Media GmbH and Ströer SSP GmbH in technical infrastructures, the sovereignty over the aforementioned information lies exclusively with the aforementioned companies. The information about the preferences will not be passed on to third parties. Neither the aforementioned companies nor the providers of the technical infrastructures are in a position to directly assign specific preferences to you as a person. Furthermore, a minimum number of persons (20 persons) for whom information about preferences is stored by the aforementioned companies must have the same preferences (so-called K-anonymity).

The legal basis for the data processing described above is Article 6 (1) a GDPR. We only use the cookies required for this service (so-called marketing cookies) with your consent. You can revoke your consent at any time in our preference center.

3.5.22. Other advertising networks & affiliates

When you use our app, our ad networks and affiliates may use so-called device identifiers to create an anonymized profile of your click behavior for mobile advertising. In our app, we work with various mobile advertising partners, including the following companies:

Apple Search Ads (USA location)

Glispa (location in Germany, appropriate level of data protection)

These cookies and device identifiers can be used to show you personalized advertising. A profile is also created based on similar information that Google, Facebook, and other ad networks receive from third parties through your visits to other websites or apps on your networks.

The legal basis for data processing is Article 6 (1) a GDPR. You can revoke your consent at any time in our preference center or follow the instructions below:

Disabling personalized advertising in the app

You can disable personalized advertising through your device settings:

AndroidOn
Android, this option is located in the Google Settings app. Depending on the device, this is called "Google Settings" or just "Settings". Under the menu item "Google"->"Ads "you will find the option "Disable interest-based advertising "or depending on the device "Disable personalized advertising". With this selection, personalized advertising can be deactivated.

iOS
On iOS, this option is located in the Settings app. Under the menu item "Privacy"->"Advertising "you will find the option "No ad tracking". With this selection, personalized advertising can be deactivated.

3.6. Fan pages

ABOUT YOU maintains social media profiles on the social networks Facebook and Instagram ("Fanpages"), services of Facebook Ireland Ltd, 4 Grand Canal Square, Dublin 2, Ireland ("Facebook"), on which we regularly publish and share content and offers. When YOU interact with our fanpages or other Facebook or Instagram websites, the providers of the social networks record your usage behavior with cookies and similar technologies. ABOUT YOU can view general statistics on the interests and demographic characteristics (such as age, gender, region) of users for its fan pages. If you use social networks, the type, scope and purposes of data processing in the social networks are primarily determined by the providers of the social networks. An exception applies to so-called page insights, for which we are jointly responsible with Facebook and explain below.

Processing of your data by Facebook

Facebook also processes your data when using Fanpages for its own purposes, which are not depicted in this privacy policy and over which we have no control. You can find more information about this at the respective social networks:

Facebook privacy notice

Instagram privacy notice

Usage analysis (Page Insights)

When you interact with our fan pages, Facebook records your usage behavior with cookies and similar technologies. In this context, ABOUT YOU receives "page insights" that contain statistical, non-personalized (anonymized) information about visitors. It is not possible for us to assign this information to you personally. The selection and processing of Page Insights information is done exclusively by Facebook. Page insights help us to understand how our fan pages are used, what interests visitors have, and which topics and content are particularly popular. We use this information to offer visitors to our fan pages relevant content and to better respond to the interests and usage habits of our visitors.

ABOUT YOU and Facebook are jointly responsible for the processing of your data for the provision of Page Insights (Article 26 GDPR). There is an agreement between ABOUT YOU and Facebook that specifies which company fulfills which data protection obligations in accordance with the GDPR with regard to the processing of Page Insights data.

The agreement with Facebook is available here.

Facebook has summarized the key contents of this agreement (including a list of Page Insights data) here: https://www.facebook.com/legal/terms/information_about_page_insights_data.

Insofar as you have consented to Facebook in relation to the creation of page insights described above, the legal basis is Article 6 (1) a GDPR. Otherwise, the legal basis is Article 6 (1) f GDPR, whereby our legitimate interest is derived from the aforementioned purposes.

3.7. Social media plug-ins

We may use social plug-ins of the social networks Facebook and Twitter in our services on the basis of Article 6 (1) a GDPR in order to make our company better known. The responsibility for data protection compliant operation is to be ensured by their respective providers.

The purpose and scope of the data collection and the further processing and use of the data by the respective provider, as well as your rights in this regard and setting options for protecting your privacy, can be found in the respective provider's privacy policy, which we link to below.

Facebook

We use plug-ins of the social network facebook.com, which is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"), on some websites. You can find the link to Facebook's privacy policy here: Facebook Privacy Policy.

Twitter

We use plug-ins of the social network Twitter, which is operated by Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA ("Twitter"), on some websites. You can find the link to Twitter's privacy policy here: Privacy Policy of Twitter.

If plug-ins are activated, your web browser establishes a direct connection with the web servers of the respective social network and the content of the plug-in is transmitted by the social network directly to your web browser and integrated by it into our website. By integrating the plug-ins, the social network receives the information that you have accessed the corresponding page of our website and can collect device and access data. If you are logged in to the social network, it can also assign the visit to your account with the respective social network.

By logging out of the pages of social networks beforehand and deleting cookies that have been set, you can prevent social networks from assigning the information collected about you to your user account with the respective social network during your visit to www.aboutyou.de. You must log out of the social networks before visiting our website. If you do not want social networks to assign the data collected via our website directly to your profile, you must log out of the corresponding social networks before visiting our website. You can also completely prevent the loading of the plugins with add-ons for your browser, e.g. with the script blocker "NoScript", which can be found at: www.noscript.net.

3.7.1. Facebook Connect / Login

ABOUT YOU offers the User the option of registering for the Service with his Facebook access (so-called Facebook Connect function). Facebook Connect is a service of the social network Facebook, which is operated by Facebook Inc. (1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). Additional registration with ABOUT YOU is then not required. To register, the user is redirected to the Facebook website, where he can log in with his usage data. This links the Facebook profile and the ABOUT YOU service. Through the link, ABOUT YOU automatically receives from Facebook the information that the user has consented to transmit (e.g. first name, last name, e-mail address, profile picture, gender, friends list). We use this information to be able to identify you when you use ABOUT YOU.

The legal basis for this data processing is Art. 6 (1) a GDPR.

For more information about Facebook Connect and privacy settings, click here: Facebook privacy notice.

3.8. Customer account / user account

In order to provide you with the greatest possible convenience, we offer you the permanent storage of your personal data in a password-protected customer account/user account.

The creation of a customer account is voluntary. If you create a customer account, the processing of your data collected here is based on Article 6 (1) b GDPR. After setting up a customer account, no new data entry is required. In addition, you can view and change the data stored about you in your customer account at any time.

Only if you want to place orders via our website/application, the opening of a customer account is mandatory for the processing of the contract.

In addition to the data requested when placing an order, you must enter a password of your choice to set up a customer account. This password is used together with your e-mail address to access your customer account. Please treat your personal access data confidentially and do not make them accessible to unauthorized third parties. Please note that you will automatically remain logged in after leaving our website, unless you actively log out.

You have the option to delete your customer account at any time. Please note, however, that this does not result in the deletion of the data visible in the customer account once you have ordered from us. The deletion of your data takes place automatically after the expiration of the commercial and tax retention obligations applicable to us. The legal basis for this further data processing is Article 6 (1) c GDPR and Article 6 (1) f GDPR.

3.9. Contacting

We use the CRM system Zendesk to process customer inquiries. The provider is Zendesk, Inc, 1019 Market Street in San Francisco, CA 94103 USA ("Zendesk"). We use Zendesk to process your requests quickly and efficiently. We have entered into a Data Processing Agreement (DPA) with Zendesk. Zendesk processes your data when you submit a request to us exclusively on our behalf and not for its own purposes.

Zur Bearbeitung von Kundenanfragen verwenden wir das CRM-System Zendesk. Anbieter ist die Zendesk, Inc, 1019 Market Street in San Francisco, CA 94103 USA („Zendesk“). Wir nutzen Zendesk, um Deine Anfragen schnell und effizient bearbeiten zu können. Wir haben mit Zendesk einen Vertrag zur Auftragsverarbeitung (Data Processing Agreement, DPA) abgeschlossen. Zendesk verarbeitet Deine Daten bei Anfragen an uns ausschließlich in unserem Auftrag und zu keinen eigenen Zwecken.

For more information, see Zendesk's privacy policy:

The legal basis for this data processing is Article 6 (1) a, Article 6 (1) b, Article 6 (1) c GDPR and Article 6 (1) f GDPR.

3.10. Payments

We process your payment information for the purpose of payment processing, e.g. when you purchase or use a product and/or service via www.aboutyou.de. Depending on the payment method, we forward your payment information to third parties (e.g. in the case of credit card payments to your credit card provider).

The legal basis for this data processing is Article 6 (1) a, Article 6 (1) b GDPR and Art. 6 (1 f GDPR.

3.10.1. Paypal

When paying via PayPal, your payment data will be forwarded to PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal") as part of the payment processing. PayPal reserves the right to conduct a credit check for the payment methods credit card via PayPal, direct debit via PayPal or - if offered - "purchase on account" via PayPal. PayPal uses the result of the credit check with regard to the statistical probability of non-payment for the purpose of deciding on the provision of the respective payment method. The credit report may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they have their basis in a scientifically recognized mathematical-statistical procedure. Among other things, address data is included in the calculation of the score values. For further information on data protection, including information on the credit agencies used, please refer to the Paypal privacy policy.

3.10.2. Klarna payment methods

In cooperation with Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden, we offer the following payment options. The payment is made to Klarna in each case:

• Invoice: The payment term is 30 days from the date of dispatch of the goods/ticket/ or, for other services, the provision of the service. The full invoice terms for the countries where this payment method is available can be found here.
• • Direct bank transfer: Available in Germany, Austria, Belgium, Italy, Spain, Poland and the Netherlands. Your account will be debited immediately after placing the order.

The use of the payment methods invoice and direct debit requires a positive credit check. In this respect, we forward your data to Klarna for the purpose of the address and credit check as part of the purchase initiation and processing of the purchase contract. Please understand that we can only offer you those payment methods that are permitted based on the results of the credit check. You can find more information and Klarna's terms of use hier.

Your personal information will be treated by Klarna in accordance with applicable data protection laws and as set forth in Klarna's Privacy Policy.

3.10.3. Ratepay invoice purchase and direct debit

In order to be able to offer you attractive payment methods, we work together with RatePAY GmbH, Franklinstraße 28-29, 10587 Berlin (hereinafter "ratePAY"). If an effective purchase contract is concluded between you and us when using a RatePAY payment method, we assign our payment claim to RatePAY. When using the RatePAY payment method installment payment, we assign our payment claim to the partner bank of RatePAY GmbH. If you choose one of the RatePAY payment methods offered here, you consent to the transfer of your personal data and that of the order to RatePAY GmbH for the purpose of identity and credit checks, as well as contract processing. All details can be found in the additional terms and conditions and the data protection notice for RatePAY payment methods, which are part of this privacy policy and always apply when you choose a RatePAY payment method.

If you choose direct debit, payment information (IBAN, BIC) will also be collected and transmitted to RatePAY.

3.10.4. paydirekt

When paying via paydirekt, your payment data will be transmitted to Hamburger Allee 26-28, 60486 Frankfurt am Main, Germany, as part of the payment processing.

The payment data (e.g. payment amount, details of the payee) and the participant's confirmation as to whether the payment data is correct are collected, processed and transmitted to the bank by paydirekt GmbH in order to execute the paydirekt payment. paydirekt GmbH authenticates the payment using the authentication procedure stored for the participant. The bank authorizes the payment with the involvement of paydirekt GmbH vis-à-vis the merchant. paydirekt GmbH collects and stores the transaction data of paydirekt payments. The transaction data includes the transaction reference and the transaction ID as well as basket information, which paydirekt GmbH receives from the merchant if the merchant supports this. They enable paydirekt GmbH and the bank to identify and reference the transaction at a later date (e.g. in the case of refunds) so that it is possible to allocate the transaction to the respective customer. For the processing of refunds, transaction data is transmitted by paydirekt GmbH to the bank.

You can find more information in the paydirekt privacy policy below.

7.1. Overview

In addition to the right to revoke your consent given to us, you are entitled to the following further rights if the respective legal requirements are met:

• the right of access about your personal data stored by us (Article 15 GDPR), in particular you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the origin of your data, if it has not been collected directly from you;
• the right to have inaccurate data corrected or correct data completed (Article 16 GDPR),
• the right to have your data stored by us deleted (Article 17 GDPR), insofar as no legal or contractual retention periods or other legal obligations or rights to further storage are to be observed by us,
• the right to restrict the processing of your data (Article 18 GDPR), insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure; the controller no longer requires the data, but you need it to assert, exercise or defend legal claims or you have objected to the processing in accordance with Article 21 GDPR,
• the right to data portability according to Article 20 GDPR, i.e. the right to have selected data stored by us about you transferred in a common, machine-readable format, or to request the transfer to another responsible party.
• the right to lodge a complaint with a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters.

You can assert the aforementioned rights to which you are entitled at [email protected]

7.2. Right of objection

Under the conditions of Article 21 (1) GDPR, data processing may be objected to for reasons arising from the particular situation of the data subject.

The above general right to object applies to all processing purposes described in this Privacy Policy that are processed on the basis of Article 6 (1) f GDPR. Unlike the specific right to object to data processing for marketing purposes, the GDPR only requires us to implement such a general right to object if you provide us with overriding reasons for doing so (e.g. a possible risk to life or health).

7.3. Right of withdrawal

If we process data on the basis of your consent, you have the right to revoke this consent at any time. The revocation of consent does not have the consequence that the data processing carried out on the basis of consent up to the time of the revocation becomes ineffective.

7.4. Fan pages

For the processing of your Page Insights information together with Facebook, we have agreed with Facebook that Facebook is primarily responsible for providing you with information about the processing of your Page Insights information and for enabling you to exercise your data protection rights (e.g. right to object). You can find more information about your data protection rights in connection with Page Insights and how to exercise them directly with Facebook here.

If you assert your rights against ABOUT YOU, we will forward your request to Facebook.