This privacy information is structured in a modular way. It consists of a general section that applies to any processing of personal data and processing situations relevant to all processing activities of your personal data covered by this privacy information (Section I: „General Information“), and a specific section, the content of which refers only to the particular processing situation specified by the name of the respective service or product.
To help you find the sections relevant to you, please refer to the following overview of the structure of the privacy information:
Part I: General Information
Part II: Data Processing When Visiting Our Website logando.de
Part III: Visiting Our eBay Shop
I. General Information
1. Controller, Data Protection Officer
1.1 The controller within the meaning of the General Data Protection Regulation (GDPR), the national data protection laws of the Member States, as well as other data protection regulations for the processing of your personal data is us, Logando Display & Media Solutions GmbH, Pötzschker Weg 10, 04179 Leipzig, unless otherwise specified in this privacy information. We take data protection seriously. Additional responsibilities may arise, for example, in the context of data processing when visiting our eBay shop (see Section III).
1.2 You can contact our Data Protection Officer at datenschutz@logando.de or by post at our address above, adding the reference „Data Protection Officer“.
2. Definitions
Creditworthiness Data
Personal data required for a credit check (e.g., name, date of birth, address, and bank details).
Credit Check
Assessment of the credit risk arising from entering into a contract with you and the associated advance performance obligations on our part, conducted by involving a credit agency.
Browser Data
Personal data automatically transmitted by your browser to our web servers when visiting our websites and stored by our web servers at least for the duration of your visit. This includes your IP address, date and time of visit, time zone difference to Greenwich Mean Time (GMT), pages visited on our website, access status/HTTP status code, the website from which you accessed our site, the operating system used, the browser used including version and language, the amount of data transferred, and—if JavaScript is enabled—also your screen resolution, color depth, and browser window size.
Cookie
A text file temporarily or permanently stored on your device, through which we or other recipients receive certain information. This file cannot run programs or transmit viruses to your computer. A special type of persistent cookie is the so-called “Flash Cookie,” which operates independently of the browser and is managed by software like Adobe Flash Player or similar applications.
Third Country
A country outside the European Union or one that is not a party to the Agreement on the European Economic Area.
Voluntary Information
Personal data we ask from you that is not mandatory but facilitates processing.
Google Fonts
Fonts provided by the Google Group for free use.
Google Group
Companies of Google LLC (formerly Google Inc.), Google Ireland Limited, or other affiliated companies of Google LLC.
Google Advertising Network
All locations where our ads may appear, e.g., Google websites, websites of Google Search Network partners, and other locations in the Google Advertising Network such as mobile apps.
Contact and Inquiry Data
Personal data you provide:
when visiting our websites (see Section II) via the contact form;
when visiting our eBay shop (see Section III) via eBay’s contact functions and transmitted to us by eBay;
when contacting us via email or otherwise, outside of entering into a contract.
Log File
A file stored on a web server in which browser data is recorded.
Negative Data
Personal data indicating poor creditworthiness, such as payment defaults, credit card fraud, or other contract-breaching behavior that undermines your trustworthiness.
Newsletter Delivery Data
Personal data you provide when subscribing to our newsletter, particularly your email address, along with data used to measure the success of email campaigns and data for creating a user profile, collected using cookies and other tracking technologies.
Usage Data
Personal data regarding your use of our websites, primarily collected automatically through browser data, cookies, or similar technologies.
Open Rate
A percentage indicating the number of opened newsletter emails relative to the number of delivered emails.
Mandatory Information
Personal data we request that is strictly necessary to fulfill the purposes of the processing. Mandatory fields are specifically marked during data collection.
Scoring
A probability value determined by a credit agency using a statistical method based on your personal data, indicating the likelihood of your future payment behavior, and shared with us during a credit check.
Tags
Small code elements on our website used to measure traffic and user behavior, evaluate online advertising and social channels, enable remarketing and audience targeting, and test and optimize our website.
Contract Data
Personal data you provide:
when visiting our websites, particularly during the ordering process (see Section II);
when visiting our eBay shop on the platform ebay.de and/or data transmitted to us by eBay (see Section III);
in order to establish, define, modify, or terminate the contractual relationship with us.
Additionally, this privacy policy uses terms as legally defined in the General Data Protection Regulation (GDPR), such as processor, third party, recipient, personal data, profiling, controller, and processing. You can view the definitions (Art. 4 GDPR) at, for example:
https://dejure.org/gesetze/DSGVO/4.html
3. Your Rights
3.1 If you have given us consent to use your personal data, you may revoke this consent in whole or in part at any time with effect for the future.
(1) If your personal data is processed based on tasks carried out in the public interest (Art. 6(1)(e) GDPR) or on the basis of legitimate interests (Art. 6(1)(f) GDPR), you may object to the processing of your personal data at any time with effect for the future, for reasons arising from your particular situation. In the event of an objection, we will cease processing your data for the aforementioned purposes unless:
there are compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or
the processing serves the establishment, exercise, or defense of legal claims.
3.2 You may object to the processing of your data for direct marketing purposes at any time with effect for the future. This includes objection to profiling, to the extent it is connected with such direct marketing. In the event of such objection, we will cease any further processing of your data for direct marketing purposes.
3.3 You also have the right to lodge a complaint with a data protection supervisory authority regarding data protection matters.
3.4 Furthermore, with respect to your personal data, you have the following rights:
Right of access
Right to rectification or erasure
Right to restriction of processing
Right to data portability
4. Creditworthiness Data for Purchase on Account
4.1 If you choose to pay by invoice, we may carry out a credit check in advance. For this purpose, we request a scoring value from a credit agency based on your creditworthiness data. This value helps us decide whether to grant payment by invoice. If the credit check is positive, payment by invoice is possible. If it is negative, payment by invoice is not permitted.
4.2 Since we are making an advance payment when offering payment by invoice, the credit check is intended to protect us from payment defaults. The scoring value helps us assess credit risks prior to contract conclusion. The credit check is carried out based on Art. 6(1)(1)(b) and (f) GDPR.
4.3 For credit checks, we use the following credit agencies: If you are ordering as a consumer as defined by § 13 BGB, we work with: <Name, Address of Credit Agency>. For all other customers, we work with: <Name, Address of Credit Agency>. Your creditworthiness data will be forwarded to the respective credit agency for the purpose of determining a scoring value based on Art. 6(1)(1)(b) and (f) GDPR. The credit agency stores your creditworthiness data. You may request information about your stored personal data and the applicable data protection provisions from the agency. You can ask us for the relevant contact offices.
4.4 We do not share your creditworthiness data or the results of the credit check, especially the scoring value, with other recipients or third parties. No transfer of your creditworthiness data or scoring value to third countries or international organizations is planned. Additionally, we refer to the privacy information provided by the respective credit agency. We do not store your creditworthiness data or the credit check results; they are collected separately for each purchase.
5. Negative Data
5.1 We may transmit negative data to the following credit agency: <Name, Address>.
5.2 Transmission is carried out in accordance with legal requirements when necessary to protect our legitimate interests or those of third parties, and when there is no reason to believe that your interests or fundamental rights and freedoms, which require the protection of personal data, outweigh these interests. Collection, storage, and transfer are for the purpose of fraud prevention and to prevent future contractual violations and damages, based on Art. 6(1)(1)(f) GDPR.
5.3 We do not share negative data with other recipients or third parties. No transfer of negative data to a third country or an international organization is planned.
6. Newsletter Data, Mailchimp
6.1 We process your newsletter subscription data, which may include both required and optional information, to inform you about news and to stay in contact with you. We analyze your usage behavior to improve and optimize our offers and create a personalized usage profile. The newsletter is sent based on your consent in accordance with Art. 6(1)(1)(a) GDPR in conjunction with Art. 7 GDPR.
6.2 We use Mailchimp (The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE Suite 5000, Atlanta, GA 30308 USA) for sending and analyzing newsletters. Mailchimp acts as our processor for newsletter dispatch. When you sign up for our newsletter via our website, you are added to a Mailchimp mailing list. Mailchimp collects the following personal data on our behalf: name, email address, address, and telephone number. Additionally, Mailchimp gathers data via cookies and tracking technologies, including device and application information (e.g., IP address, OS, browser ID), and interaction data (e.g., newsletter opens, clicks, survey responses). Mailchimp also tracks performance metrics like delivery rates and open rates. Mailchimp may also collect additional data from third-party sources. We have no control over this. For more information on Mailchimp’s data processing and opt-out options, visit: https://mailchimp.com/legal/privacy/#3._Privacy_for_Contacts and https://mailchimp.com/legal/cookies/.
6.3 Mailchimp uses a “double opt-in” procedure, meaning you will only receive the newsletter after confirming your registration via a link in a confirmation email. This must be done within 24 hours; otherwise, the subscription will be blocked and deleted after one month. Mailchimp stores your email address to send the newsletter, and your IP address and timestamps are logged based on Art. 6(1)(1)(c) GDPR to provide evidence of consent and prevent misuse.
6.4 All newsletter data we receive from Mailchimp is stored on our web servers. These are operated by Mittwald CM Service GmbH & Co. KG, Königsberger Straße 4–6, 32339 Espelkamp, acting as our processor. Mailchimp also stores this data on its own servers. As a U.S.-based company, some data may be stored in the USA. Since there is no adequacy decision from the EU for the U.S., The Rocket Science Group, LLC has entered into EU Standard Contractual Clauses with us to protect your data. You can request a copy of these clauses from us. For more info: https://mailchimp.com/legal/privacy/, https://mailchimp.com/legal/data-processing-addendum/.
6.5 You can revoke your consent to receiving newsletters and/or tracking technologies at any time without cost. You may do so by emailing us at <Email address> or unsubscribing via the link at the bottom of any newsletter. Your additional rights (see Part I, Section 3) remain unaffected.
6.6 Your newsletter data is stored until you withdraw your consent and will then be deleted or anonymized unless legal obligations require continued processing or storage for legal purposes (e.g., evidence, defense of claims) or you have expressly consented to further use.
7. Browser Data
7.1 We collect browser data each time you visit our website. This data is not linked to other personal data, except when evaluating newsletter data (see Part II, Section 6).
7.2 Browser data is used to display our website properly and ensure its stability and security, based on Art. 6(1)(1)(f) GDPR. It helps us detect, fix, and prevent issues or attacks on our IT systems.
7.3 Our web servers and browser data processing are operated by Mittwald CM Service GmbH & Co. KG, Königsberger Straße 4–6, 32339 Espelkamp. Browser data is also shared with The Rocket Science Group, LLC for newsletter dispatch, and with Google Ireland Limited for embedded YouTube videos, Google Maps, Google Fonts, and Google reCAPTCHA. No further sharing of browser data with other recipients or third parties is planned unless required by authorities or courts due to a cyberattack or legal obligation. No transfer of browser data to other third countries or international organizations is planned.
7.4 Your IP address is only stored during your visit and then either deleted or anonymized. Other browser data (including anonymized IP) is stored in a log file, which is deleted after 60 days.
8. Cookies
8.1 We use cookies. You can view details on the cookies used, their duration, function, and collected usage data at <URL>.
8.2 Technically necessary cookies are used based on Art. 6(1)(1)(f) GDPR to ensure smooth use of our services.
8.3 Technically non-essential cookies are used only with your explicit consent, based on Art. 6(1)(1)(a) GDPR in conjunction with Art. 7 GDPR.
8.4 Web servers and cookie-related data are handled by Mittwald CM Service GmbH & Co. KG, Königsberger Straße 4–6, 32339 Espelkamp, acting as our processor. No data is shared with third parties or international organizations. Data transfers to third countries are not planned.
8.5 You can block cookies in your browser settings or delete them at any time. You can configure your browser to reject all or specific cookies. Please note that disabling our cookies may limit the functionality of our website.
9. Use of Google Analytics
9.1 We use Google Analytics on our website, a web analysis service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Ireland Limited uses technologies (e.g., cookies, scripts, pixels) to analyze your activities on our website. To measure and evaluate your activities, Google Ireland Limited also uses artificial intelligence, particularly machine learning algorithms, to analyze your behavior across devices. During your visit to our website, the following data is collected in addition to your browser information: duration of visit, clicks, scrolling behavior, search terms used to find the website, referral sources (e.g., links or search engines), demographic characteristics such as language and location, content viewed on the site, devices used, and <other personal data>. Your IP address is stored in a shortened form, so it can no longer be directly linked to a specific individual. Google Ireland Limited evaluates your use of the website, compiles reports on website activities for us, and provides further services related to website and internet usage. More information can be found at:
https://policies.google.com/privacy
https://policies.google.com/technologies/cookies
9.2 We use Google Analytics to analyze and improve our website. Our aim is to enhance our offering and make it more attractive for users. Your prior consent is required to use Google Analytics. The legal basis for using Google Analytics is Article 6(1)(a) GDPR in conjunction with Article 7 GDPR.
9.3 We have entered into a data processing agreement with Google Ireland Limited, which obligates them to protect your data. Google Ireland Limited is part of the Google Group. It cannot be ruled out that your data may also be processed outside the European Union in collaboration with other Google Group companies. Some of these countries currently do not have an EU Commission adequacy decision under Article 45 GDPR, meaning their data protection levels are not considered equivalent to those of the EU. This applies in particular to the USA. Google Ireland Limited has concluded EU Standard Contractual Clauses with these companies to protect your personal data. These can be requested from Google Ireland Limited. More information on data protection by Google Group companies can be found at:
https://marketingplatform.google.com/about/analytics/terms/de/
https://support.google.com/analytics/answer/6004245
https://policies.google.com/?hl=en
9.4 Data generated by the technologies used by Google Ireland Limited will be stored for 14 months. Data that has reached its retention period is automatically deleted once a month.
9.5 You can withdraw your consent for the use of Google Analytics at any time, in whole or in part, with future effect by disabling Google Analytics in the „cookie settings.“
10. Use of Google Ads and Conversion Tracking
10.1 We use Google Ads as an online marketing tool to promote our products and services. As part of our advertising campaigns, we use Conversion Tracking, an analytics service provided by Google Ireland Limited. Conversion Tracking allows us to track what happens after users click on our ads—whether they purchased a product, signed up for a newsletter, visited our website, or downloaded our app. If you click on one of our ads, a cookie is stored on your device by Google Ireland Limited. If you visit our website and the cookie has not yet expired, Google Ireland Limited and we can recognize that you clicked the ad and were redirected to our page. Typically, the cookie stores the unique cookie ID, number of ad impressions per placement (frequency), last impression (important for post-view conversions), and opt-out information (indication that the user does not want to be tracked). These cookies are not used to personally identify you but allow Google Ireland Limited to recognize your browser. Each Google Ads customer receives a unique cookie, meaning cookies cannot be tracked across different customers‘ websites.
10.2 We use Google Ads to draw attention to our offerings on external websites using advertising media (e.g., banners). Conversion tracking allows us to evaluate the success of our advertising campaigns. This helps us optimize our website and advertising efforts and fairly assess advertising costs. We do not collect or process any personal data in these advertising measures. We receive only statistical analyses from Google Ireland Limited, which help us understand which ads are most effective. We do not receive further data that could identify users. The legal basis for using Google Ads and Conversion Tracking is Article 6(1)(a) GDPR in conjunction with Article 7 GDPR.
10.3 Google Ireland Limited is part of the Google Group, which means your data may be shared with other Google Group companies. We have no influence over the scope or further use of the data collected by Google Ireland Limited and its affiliates. We therefore inform you to the best of our knowledge: By using Google Ads and integrating Conversion Tracking, Google Ireland Limited learns that you have visited a particular part of our website or clicked on our ad. If you are registered with a Google service, Google Ireland Limited and its affiliates can associate the visit with your account. Even if you are not logged in, your IP address may still be collected and stored. Your data may also be processed outside the EU. Some countries do not have an adequacy decision from the EU Commission (Article 45 GDPR), particularly the USA. Google Ireland Limited has concluded EU Standard Contractual Clauses with these companies. You can request these from Google Ireland Limited. More details can be found at:
https://policies.google.com/privacy?hl=en
https://services.google.com/sitestats/en.html
10.4 The cookies used by Google Ireland Limited generally expire after 30 days.
10.5 You can withdraw your consent to participate in this tracking at any time with future effect by deleting cookies in your browser settings. You can also configure your browser to block certain or all cookies. Please note that disabling cookies may limit the functionality of our website.
11. Use of Google Ads Remarketing
11.1 We use Google Ads for online marketing to promote our products and services. As part of these advertising campaigns, we use the „Google Remarketing“ feature, a service provided by Google Ireland Limited. This feature enables us to show you targeted ads on other websites within the Google Display Network based on your interests, as inferred from your interaction with our website. Cookies stored in your browser help achieve this, collecting anonymized information about your visit and use of our site. No personal data is shared in this process.
11.2 The purpose of Google Remarketing is to show you ads that are potentially more relevant to your interests. We do not collect or process personal data, nor can we identify you. The legal basis for the use of Google Remarketing is Article 6(1)(a) GDPR in conjunction with Article 7 GDPR.
11.3 Google Ireland Limited is part of the Google Group, meaning your data may be shared with other companies in the group. We have no influence over the extent or further use of the data collected through this tool. As far as we are aware, Google Ireland Limited receives information that you have accessed a specific part of our website. If you are registered with a Google service, Google Ireland Limited and its affiliates may associate this visit with your account. Even if not registered or logged in, your IP address may be collected and stored. Your data may be processed outside the EU, particularly in the USA. As with other services, Google Ireland Limited has entered into EU Standard Contractual Clauses with group companies. These are available upon request. More information can be found at:
https://policies.google.com/privacy?hl=en
https://services.google.com/sitestats/en.html
11.4 Cookies used by Google Remarketing generally expire after 30 days.
11.5 You may withdraw your consent for this tracking at any time with future effect by deleting cookies in your browser settings. You may also configure your browser to block all or selected cookies. Please note that this may limit the functionality of our website.
12. Use of Google Tag Manager
12.1 We use Google Tag Manager on our website, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. This service allows us to centrally manage website tags. In doing so, your browser data is also processed by Google Ireland Limited. The Google Tag Manager triggers other tags, which may in turn collect personal data. However, Google Tag Manager itself does not access this personal data. Further information can be found in Google’s usage policy at https://www.google.com/intl/de/tagmanager/use-policy.html and in Google’s privacy policy at http://www.google.de/intl/de/policies/privacy.
12.2 The following tags are managed through Google Tag Manager on our website: Google Analytics (Section II. 9), Google Ads Conversion Tracking (Section II. 10), and Google Ads Remarketing (Section II. 11). Detailed explanations of these tags can be found in this privacy policy. The legal basis for using Google Tag Manager is Art. 6 (1) sentence 1 lit. f) GDPR.
12.3 Google Ireland Limited is part of the Google Group. This means that it cannot be ruled out that your data may be shared with other Google Group companies and that your browser data may also be processed outside the European Union in cooperation with other Google Group companies. For some countries, there is currently no adequacy decision by the EU Commission under Art. 45 GDPR, i.e., it has not been determined that the country provides a level of data protection equivalent to that of the EU. This applies in particular to the USA. Google Ireland Limited has concluded EU Standard Contractual Clauses with the other Google Group companies to protect your personal data. You may request these from Google Ireland Limited. More information about data protection within the Google Group can be found at: https://policies.google.com/privacy?hl=de&gl=de.
12.4 If you have disabled cookies or made such settings, this will be respected for all tracking tags managed by Google Tag Manager. Your cookie settings will not be altered by the Google Tag Manager.
13. Embedding YouTube Videos
13.1 We have embedded YouTube videos on our website, which are stored at http://www.youtube.com and can be played directly from our website. The operator of the “YouTube” platform is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. To protect your personal data, the videos are initially blocked. You can activate the video using the corresponding button. Only after activation does your browser establish a direct connection to the servers of Google Ireland Limited. The video is then transmitted directly to your browser and embedded into the website. In doing so, your browser data is transmitted to Google Ireland Limited. This data processing is necessary to play the videos. Google Ireland Limited also receives the information that you have visited the relevant subpage of our website. We have no influence over the use of your data by Google Ireland Limited once the video is activated.
13.2 By embedding YouTube videos, we aim to improve our services and make them more interesting for you as a user. The legal basis for embedding YouTube videos is Art. 6 (1) sentence 1 lit. a) GDPR in conjunction with Art. 7 GDPR.
13.3 Google Ireland Limited is part of the Google Group. This means that your data may be shared with other Google Group companies and processed outside the European Union. For some countries, there is no adequacy decision by the EU Commission pursuant to Art. 45 GDPR, meaning these countries may not provide an equivalent level of data protection. This particularly applies to the USA. Google Ireland Limited has concluded EU Standard Contractual Clauses with the Google Group companies to ensure your data is protected. You may request these clauses from Google Ireland Limited. More information on data protection within the Google Group is available at: https://policies.google.com/privacy?hl=de&gl=de.
14. Embedding Google Maps
14.1 Our website uses Google Maps via an API interface, a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. We use a two-click solution for integrating Google Maps. This means the map is initially blocked to protect your personal data. Only when you click the corresponding button and thereby activate the API interface does your browser connect directly to Google’s servers. The map content is transmitted directly to your browser and integrated into the website. Your browser data is transferred to Google Ireland Limited in the process. The processing of this data is required to display the map. Google also receives the information that you visited the corresponding subpage of our website. Google Ireland Limited also sets a cookie. We have no influence on Google’s use of your data once Google Maps is activated.
14.2 With Google Maps, we can display interactive maps directly on our website, allowing you to conveniently use the map function and find us more easily. The legal basis for embedding Google Maps is Art. 6 (1) sentence 1 lit. a) GDPR in conjunction with Art. 7 GDPR.
14.3 The processing of your data is carried out based on a joint controller agreement pursuant to Art. 26 GDPR, which is available at https://privacy.google.com/intl/de/businesses/mapscontrollerterms/. Google Ireland Limited is part of the Google Group. As such, your data may be shared with other Google Group companies and processed outside the European Union. There is no EU adequacy decision for some countries (particularly the USA), meaning these countries may not provide adequate protection. Google Ireland Limited has concluded EU Standard Contractual Clauses with its group companies to safeguard your personal data. These are available upon request. For more information on the purpose and scope of data collection and processing by Google, and on your rights and privacy settings, visit https://policies.google.com/privacy?hl=de&gl=de.
14.4 The cookie set by Google Ireland Limited is automatically deleted after six months.
14.5 You can prevent the installation of cookies via your browser settings and delete cookies that have already been set, particularly the one from Google Ireland Limited. You can configure your browser to reject all or certain cookies. Please note that if you reject cookies, you may not be able to use all functions of our website.
15. Use of Google Fonts
15.1 For user-friendly presentation of our services, we use Google Fonts on our website, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. When you visit our website, the Google Fonts are loaded by your browser. For this purpose, your browser establishes a direct connection with the servers of Google Ireland Limited. The fonts are transmitted directly to your browser and embedded in the website. In doing so, Google Ireland Limited receives information that you accessed the relevant subpage of our website and your browser data. This processing of browser data is necessary for integrating Google Fonts. We have no influence over how Google Ireland Limited further processes this data. For more information on Google Fonts, visit https://developers.google.com/fonts/faq.
15.2 Google Fonts allows us to properly display fonts and create a user-friendly website. This ensures consistent and visually appealing design, faster loading times, and low-maintenance font management. The legal basis for using Google Fonts and transferring browser data to Google Ireland Limited is Art. 6 (1) sentence 1 lit. f) GDPR.
15.3 Google Ireland Limited is part of the Google Group. Your data may be shared with other Google Group companies and processed outside the European Union. Some countries, particularly the USA, do not currently have an adequacy decision under Art. 45 GDPR. Google Ireland Limited has concluded EU Standard Contractual Clauses with its group companies to ensure your personal data is protected. You can request these from Google Ireland Limited. For more information on the purpose and scope of data collection and processing by Google, your rights, and privacy settings, visit: https://policies.google.com/privacy?hl=de&gl=de.
16. Use of Google reCaptcha
16.1 To protect the input forms on our website, we use the „reCaptcha“ service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. reCaptcha analyzes the behavior of website visitors based on various characteristics. This analysis begins automatically after you have given your consent. reCaptcha evaluates various information. To the best of our knowledge, your browser data, as well as visitor behavior, time spent on the site, rendering instructions and scripts, user input behavior, and mouse movements in the area of the reCaptcha checkbox are transmitted to Google Ireland Limited. reCaptcha also sets a cookie.
16.2 The analysis carried out by reCaptcha is used to distinguish whether an internet action is performed by a human or an automated program, e.g., for misuse prevention. We aim to protect our website from abusive automated scanning and from SPAM. The legal basis for using Google reCaptcha is Art. 6 (1)(a) GDPR in conjunction with Art. 7 GDPR.
16.3 Google Ireland Limited is part of the Google group of companies. This means that it cannot be ruled out that your data may be transferred by Google Ireland Limited to other companies within the Google group and that your browser data may also be processed in cooperation with other Google companies outside the European Union. For some countries, particularly the USA, there is currently no adequacy decision by the EU Commission pursuant to Art. 45 GDPR, meaning the data protection level is not considered equivalent to that of the EU. Google Ireland Limited has concluded EU Standard Contractual Clauses with the Google group companies to protect your personal data. You can request these from Google Ireland Limited. More information on data protection within the Google group can be found at: https://policies.google.com/privacy?hl=de&gl=de.
16.4 The cookie set by Google Ireland Limited is automatically deleted after six months.
16.5 You can prevent the installation of cookies in your browser security settings and delete cookies already installed—particularly those set by Google Ireland Limited—at any time. You can configure your browser settings according to your preferences and reject specific or all cookies. Please note that if you reject cookies, you may not be able to use all functions of our website.
17. Use of the Chatbase Chatbot
17.1 We use a chatbot from Chatbase Inc., 548 Market St, PMB 72896, San Francisco, CA 94104-5401, USA (“Chatbase”) on our website to facilitate communication with our website visitors and to answer inquiries efficiently.
17.2 When you use the chatbot, the data you enter (e.g., message content, name, email address) as well as technical data (e.g., IP address, time of request, browser used) are transmitted to and processed by Chatbase.
17.3 This processing takes place to answer your inquiries and to improve our customer service.
17.4 The use of the chatbot and the related data processing is based on our legitimate interest under Art. 6 (1)(f) GDPR in efficient and user-friendly communication. If you voluntarily provide personal data, processing is based on your consent in accordance with Art. 6 (1)(a) GDPR.
17.5 Please note that your data may be transferred to the USA. Chatbase has committed to complying with the EU Standard Contractual Clauses to ensure an adequate level of data protection. For more information, see Chatbase’s privacy policy: https://www.chatbase.co/legal/privacy
17.6 We have concluded a Data Processing Agreement (DPA) with Chatbase.
You have the right to request information about the personal data stored about you, to have incorrect data corrected, and to request deletion or restriction of processing. For more information on your rights, please refer to this privacy policy.
III. Visiting our eBay Shop
1. Scope
The following privacy notice (Part III) applies to the eBay shop of Logando. This notice informs you about the processing of your personal data when purchasing a product through our eBay shop.
Further information on the processing of your personal data by the platform provider eBay GmbH, Albert-Einstein-Ring 2–6, 14532 Kleinmachnow, Germany („eBay“) can be found at: https://www.ebay.de/help/policies/member-behavior-policies/datenschutzerklrung?id=4260.
2. Controllers
2.1 The responsible parties within the meaning of the GDPR and national data protection laws for the processing of your personal data are:
2.2 For data processing in connection with the technical provision of the eBay marketplace: the platform provider eBay.
2.3 For data processing in connection with the delivery and services of products ordered through our eBay shop:
Logando Display & Media Solutions GmbH, Pötzschker Weg 10, 04179 Leipzig. We take data protection seriously.
2.4 You can reach our data protection officer at datenschutz@logando.de or via our postal address with the addition „Data Protection Officer.“
3. Contact and Inquiry Data
3.1 We process your contact and inquiry data—which may include mandatory and voluntary information (e.g., for addressing you personally or clarifying follow-up questions)—for responding to your inquiries, based on Art. 6 (1)(a) and (b) GDPR, and only insofar as necessary to handle your inquiry.
3.2 We have engaged Mittwald CM Service GmbH & Co. KG, Königsberger Straße 4–6, 32339 Espelkamp, as a processor for operating our web servers and processing this data. The data will not be shared with other recipients or third parties. Transfer of your contact/inquiry data to third countries or international organizations is not intended.
3.3 Your contact and inquiry data will be deleted immediately after your inquiry has been fully processed, unless statutory provisions require continued processing, data retention is necessary for legal evidence (e.g., to assert or defend claims), or you have expressly consented or a legal authorization permits further retention.
4. Contract Data
4.1 We process your contract data received via the eBay marketplace—which may include both mandatory and voluntary data—for establishing, executing, and modifying the contractual relationship, based on Art. 6 (1)(b) GDPR.
4.2 Additionally, we may process your contract data for direct marketing purposes to inform you about similar products from our portfolio, based on Art. 6 (1)(f) GDPR. This will only be done in writing, and you may object to this use at any time (see Part I, Section 3.3).
4.3 Your contract data will only be shared with third parties when necessary to fulfill the contract, based on Art. 6 (1)(b) GDPR. Recipients include payment service providers, manufacturers, distributors, and shipping companies. We have also engaged Mittwald CM Service GmbH & Co. KG as a processor for server operations. No further data sharing with other recipients or third parties is intended. Data will not be transferred to a third country or international organization.
4.4 Your contract data will be stored for the duration of contract fulfillment and deleted immediately afterward, unless required for legal reasons, evidence purposes, or if you have expressly authorized or permitted it by law.
