furore & rotWEISSrotHome  /  Privacy Policy

Privacy Policy

Thank you for visiting our online shop. Protection of your privacy is very important to us. Below you will find extensive information about how we handle your data.

1. Access data and hosting

You may visit our website without revealing any personal information. With every visit on the website, the web server stores automatically only a so-called server log file which contains e.g. the name of the requested file, your IP address, the date and time of the request, the volume of data transferred and the requesting provider (access data), and documents the request.

These access data are analysed exclusively for the purpose of ensuring the smooth operation of the website and improving our offer. This serves according to art. 6 (1) 1 lit f GDPR the protection of our legitimate interests in the proper presentation of our offer that are overriding in the process of balancing of interests. All access data are deleted no later than seven days after the end of your visit on our website.

Third Party Hosting Services

Data are also processed by a third-party provider that we have engaged to render hosting and website presentation services on our behalf. This provider processes on its servers all data that are collected in the manner specified below when you visit our website or fill in forms made available for this purpose in our online shop. Data are processed on other servers only in the scope described herein.

Our service provider is domainfactory GmbH, Oskar-Messter-Str. 33, 85737 Ismaning, Germany. All data remains within the European Union.

2. Data collection and use for processing the contract and for opening a customer account

We collect personal data that you voluntarily submit to us when you place an order, contact us (e.g. via contact form or by email) or open a customer account with us. Mandatory fields are marked as such because we absolutely need those data to perform the contract or process your contact request or open your customer account, and you would otherwise not be able to complete your order and/or create your customer account or send the contact request. It is evident in each input form what data are collected. We use the data that you disclose to us to perform the contract and process your enquiries according to art. 6 (1) 1 lit b GDPR. Upon completion of the contract or deletion of your customer account, any further processing of your data will be restricted, and your data will be deleted upon expiry of the retention period applicable under relevant regulations, unless you expressly consent to the further use of your data or we reserve the right to further use your personal data in the scope and manner permitted by law, of which we inform you in this notice. Your customer account can be deleted at any time. For this purpose you can either send a message to the contact option specified below or use the relevant function available in the customer account.

3. Transfer of Data

For fulfillment of our contract we disclose your data to the payment provider and the shipping company selected according to art. 6 (1) 1 lit. b GDPR as required to perform the contract.

We use the services of payment providers and logistics providers which have their registered offices outside the EU. Personal data are disclosed to these companies only to the extent required to perform the contract.

Disclosure of Data to Payment Providers

Depending on the payment service provider you have selected during the ordering process, we disclose the payment details collected for order processing purposes to the bank commissioned to handle the payment and, as the case may be, to the payment service provider commissioned by us or to the selected payment service. Some of those data are collected by the selected payment service providers themselves if you open an account with them. In such a case, during the ordering process, you must register with your payment service provider using your access data. In this respect, the privacy notice of the relevant payment service provider applies.
If you chose direct debit as method of payment, your bank details will be transferred to Theano GmbH, Kiefernweg 8, 49205 Hasbergen, Germany during the checkout process to verify the bank details are correct. After delivery your bank details will be transferred to our bank VR Bank München Land eG, Bahnhofstr. 24, 82041 Oberhaching, Germany for purposes of collecting the direct debit from your bank account. If you chose PayPal for payment, we will transmit your order data to PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg where you have to log in with your PayPal account.
In case of payment delay or bookbacks we will disclose your order and invoice data, address and contact details as well as payment information after unsuccessful reminders and a specific announcement to our debt collection agency crejuris inkasso gmbh, Allgäuer Str. 7a, 24146 Kiel, Germany.

Disclosure of Data to a Shipping Provider

If, when or after placing your order, you have given your express consent to us doing so, we disclose your e-mail address and phone number to the selected shipping provider based on that consent according to art. 6 (1) 1 lit. a GDPR, in order to enable the shipping provider to contact you to advise you of the delivery or agree with you the delivery details.

      DHL Paket GmbH, Sträßchensweg 10, 53113 Bonn, Germany
      United Parcel Service Deutschland S.à r.l. & Co. OHG, Görlitzer Str. 1, 41460 Neuss, Germany
      Rhenus SE & Co. KG, Rhenus-Platz 1, 59439 Holzwickede, Germany
      i-bring GmbH, Joseph-von-Fraunhofer-Straße 3, 39106 Magdeburg, Germany

You may revoke your consent at any time by sending a message to the contact option described below or by directly notifying the shipping provider at the contact address specified below. After you revoke your consent, we will delete the data disclosed for this purpose, unless you expressly consent to the further use of your data or we reserve the right to further use your personal data in the scope and manner permitted by the law, of which we inform you in this notice.

Data transfer to debt collection companies

In order to fulfil the contract according to Art. 6 para. 1 s. 1 lit. b GDPR, we forward your data to an authorised debt collection agency if our payment claim has not been settled despite a previous reminder. In this case, the claim will be collected directly by the collection agency. In addition, the transfer of data serves to safeguard our legitimate interests in an effective assertion or enforcement of our payment claim in accordance with Art. 6 para. 1 s. 1 lit. f GDPR that are overriding in the process of balancing interests.

4. E-Mail Newsletter and Postal Advertisement

Our newsletter is sent to you by our service provider who processes data on our behalf and to whom we disclose your name, e-mail and postal address. Our service provider is CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede, Germany. All data remains within the European Union.

E-mail Advertising if you subscribe to our Newsletter

If you subscribe to our newsletter, we will regularly send you our e-mail newsletter based on your consent according to art. 6 (1) 1 lit a GDPR, using the data required or disclosed by you separately for this purpose. You may unsubscribe from the newsletter service at any time. For this purpose you can either send a message to the contact option specified below, use the unsubscribe form at https://www.weinfurore.de/newsletter or click the unsubscribe / abmelden link in the newsletter. Upon unsubscription, we will delete your email address unless you have expressly consented to the further use of your data or we reserve the right to further use your personal data in the scope and manner permitted by the law, of which we inform you in this notice.

E-mail Advertising if you do not subscribe to our Newsletter and your Right to opt out

If we receive your e-mail address in connection with the sale of a product or service and you have not opted out and you are not a consumer who has his habitual residence in Poland, we reserve the right to regularly email you offers for products from our product range that are similar to those you have already purchased. This serves the protection of our legitimate interests in promoting and advertising our products to customers that are overriding in the process of balancing of interests. You may unsubscribe from the newsletter service at any time. For this purpose you can either send a message to the contact option specified below, use the unsubscribe form at https://www.weinfurore.de/newsletter or click the unsubscribe / abmelden link in the newsletter. Upon unsubscription, we will delete your email address unless you have expressly consented to the further use of your data or we reserve the right to further use your personal data in the scope and manner permitted by the law, of which we inform you in this notice.

Postal Advertising and your Right to opt out

Unless you have not opted-out or you are a consumer who has his habitual residence in Spain, we reserve the right to use your first and last name and your postal address for our advertising purposes, e.g. for sending interesting offers and information about our products by post. This serves the protection of our legitimate interests in promoting and advertising our products to customers according to art. 6 (1) 1 lit. f GDPR that are overriding in the process of balancing of interests. You may opt-out of postal advertisement at any time by sending a message to the contact option specified below.

5. Integration of the Trusted Shops Trustbadge

The Trusted Shops Trustbadge is integrated on this website to display our Trusted Shops Trustmark and the collected reviews as well as to offer Trusted Shops products to buyers after an order.

This is necessary to safeguard our legitimate prevailing interests in an optimal marketing by ensuring the safety of your purchase according to Article 6 (1) f GDPR. The Trustbadge and the services advertised with it are an offer of the Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne, Germany. The Trustbadge is made available by a CDN provider (Content-Delivery-Network) as part of order processing. The Trusted Shops GmbH uses also service provider from the USA. An adequate level of data protection is guaranteed. Further information to the data security of the Trusted Shops GmbH can be found here.

When the Trustbadge is called up, the web server automatically saves a server log file which contains, for example, your IP address, the date and time of the call, the amount of data transferred and the requesting provider (access data) and documents the call. Individual access data are stored in a security database for the analysis of security problems. The log files are automatically deleted 90 days after creation at the latest.

Further personal data will be transferred to Trusted Shops GmbH if you decide to use Trusted Shops products after completing an order or have already registered for use. The contractual agreement made between you and Trusted Shops applies. For this purpose personal data is automatically collected from the order data. Whether or not you are already registered as a Trusted Shops customer is automatically checked by means of a neutral parameter, the e-mail address hashed by cryptological one-way function. The e-mail address is converted to this hash value, which cannot be decrypted by Trusted Shops before it is transmitted. After checking for a match, the parameter is deleted automatically.

This is necessary for the fulfillment of our and Trusted Shops' legitimate prevailing interests in the provision of the buyer protection linked to the specific order and the transactional review services in accordance with Art. 6 para. 1 s. 1 lit. f GDPR. Further details, including your right to object, can be found in the Trusted Shops Privacy Policy linked above and within the Trustbadge.

6. Cookies and Web Analysis

To improve the user experience on our website and enable you to use its certain features in order to show suitable products or conduct market research, some pages of this website use the so-called cookies. This serves the protection of our legitimate interests in the optimised presentation of our offer according to art. 6 (1) 1 lit a GDPR that are overriding in the process of balancing of interests. A cookie is a small text file which is stored automatically on your end device. Some of the cookies we use are deleted after you close the browser session, i.e. when you close the browser (that’s the so-called session cookies). Other cookies are stored in your end-user device and enable us to recognise your browser when you visit us again (persistent cookies). To check the cookie storage period, you can use the Overview function in the cookie settings of your web browser. You can configure your browser for it to inform you whenever a page uses cookies and decide on a case-by-case basis whether to accept or reject the cookies on a given website or generally. Every browser has a different policy for managing the cookie settings. The browser’s policy is described in the Help menu of every browser and explains how you can change your cookie settings. To find out how to change the settings in your browser, see the links below: Please note that disabling cookies may limit your access to some features of our website.

Using of Google (Universal) Analytics for Web Analytics

For the purpose of website analytics, this website uses Google (Universal) Analytics. Google (Universal) Analytics is an offer from Google Ireland Limited, a company incorporated and operated under Irish law with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland (www.google.co.uk). This serves the protection of our legitimate interests in the optimised presentation of our offer according to Art. 6 (1) 1 lit f GDPR that are overriding in the process of balancing of interests. Google (Universal) Analytics uses methods, like e.g. cookies, that enable an analysis of your use of the website. The information collected automatically by cookies about your use of this website are as a rule transmitted to and stored on a Google server in the United States. At the same time, as IP anonymisation is enabled on this website, the IP address will be shortened before being transmitted within the area of member states of the European Union or other parties to the Agreement on the European Economic Area. Only in exceptional cases, the full IP address will be sent to a Google server in the USA and shortened there. Generally, Google does not associate the anonymised IP address, transmitted from your browser through Google Analytics, with any other data held by Google.

Where information is transmitted to and stored by Google on servers located in the United States, the U.S. company Google LLC is certified under the EU-US Privacy Shield. The current certificate can be downloaded here. Based on this agreement between the USA and the European Commission, the latter has recognised entities certified to the Privacy Shield as those ensuring an adequate level of data protection.

You may prevent the data generated by cookies and related to your use of the website (incl. your IP address) from being recorded and processed by Google by downloading and installing the browser plugin available here.

Alternatively to the browser plugin, you may click this link, to prevent Google Analytics from recording your data on this website in the future. In this process, an opt-out cookie will be stored on your end-user device. If you clear your cookies, you will have to click the link again.

Google Maps

Google Maps is an offer from Google Ireland Limited, a company incorporated and operated under Irish law with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland (www.google.co.uk). This serves to safeguard our legitimate interests in an optimised presentation of our range of services and easy access to our locations in accordance with Art. 6 para. 1 letter f) GDPR that are overriding in the process of balancing interests. When using Google Maps, Google transmits or processes data about the use of the Maps functions by website visitors, which may include in particular the IP address and location data. We have no influence on this data processing. Where information is transmitted to and stored by Google on servers located in the United States, the U.S. company Google LLC is certified under the EU-US Privacy Shield. The current certificate can be downloaded here. As a result of this agreement between the US and the European Commission, the latter has established an adequate level of data protection for companies certified under the Privacy Shield. To deactivate the Google Maps service and thus prevent data transmission to Google, you must deactivate the Java script function in your browser. In this case Google Maps cannot be used or can only be used to a limited extent. Further information about data processing by Google can be found in Google's privacy policy. The Terms of Use for Google Maps contain detailed information about the map service.

Google reCAPTCHA

To protect against misuse of our web forms and spam, we use the Google reCAPTCHA service within the scope of some forms on this website. Google reCAPTCHA is an offer from Google Ireland Limited, a company incorporated and operated under Irish law with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland (www.google.co.uk). By checking a manual entry, this service prevents automated software (so-called bots) from carrying out abusive activities on the website. In accordance with Art. 6 para. 1 sentence 1 f GDPR, this serves to protect our legitimate interests in the protection of our website from misuse as well as in a trouble-free presentation of our online presence that are overriding in the balancing of interests. Google reCAPTCHA uses a code integrated into the website, a so-called JavaScript, as part of the verification methods that enable an analysis of your use of the website, such as cookies. The automatically collected information about your use of this website including your IP address is usually transmitted to a Google server in the USA and stored there. In addition, other cookies stored by Google services in your browser are evaluated by Google reCAPTCHA. No personal data is read out or saved from the input fields of the respective form. Where information is transmitted to and stored by Google on servers located in the United States, the U.S. company Google LLC is certified under the EU-US Privacy Shield. The current certificate can be downloaded here. As a result of this agreement between the US and the European Commission, the latter has established an adequate level of data protection for companies certified under the Privacy Shield. You can prevent Google from collecting the data generated by the JavaScript or the cookie and relating to your use of the website (including your IP address) and from processing this data by preventing the execution of JavaScripten or the setting of cookies in your browser settings. Please note that this may limit the functionality of our website for your use. Further information about data processing by Google can be found in Google's privacy policy.

Google Fonts

This website contains the script code "Google Fonts". Google Fonts is an offer from Google Ireland Limited, a company incorporated and operated under Irish law with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland (www.google.co.uk). This serves to protect our legitimate interests in a uniform presentation of the contents on our website in accordance with Art. 6 para. 1 lit. f) GDPR. This will establish a connection between the browser you are using and Google's servers. This gives Google knowledge that our website has been accessed via your IP address. Where information is transmitted to and stored by Google on servers located in the United States, the U.S. company Google LLC is certified under the EU-US Privacy Shield. The current certificate can be downloaded here. As a result of this agreement between the US and the European Commission, the latter has established an adequate level of data protection for companies certified under the Privacy Shield. Further information about data processing by Google can be found in Google's privacy policy.

7. Sending Rating Reminders by E-mail

If, when or after placing your order, you have given us your express consent to doing so according to art. 6 (1) 1 lit a GDPR, we will use your e-mail address to send you reminders about rating your order using the rating system applied by us. You may revoke your consent at any time by sending a message to the contact option specified below.

8. Contact Possibilities and Your Rights

You are entitled to obtain free-of-charge information concerning data stored about your person and, as the case may be, to correct, restrict the processing, enable the portability of, or delete those data. If you have any questions about how we collect, process or use your personal data, want to enquire about, correct, block or delete your data, or withdraw any consents you have given, or opt-out of any particular data use, please contact us directly using the contact data provided in our site notice.

You may also submit a complaint to the responsible data protection supervisory authority.

Your Right to Object

If we process personal data as described above to protect our legitimate interests that are overriding in the process of balancing of interests, you may object to such data processing with future effect. If your data are processed for direct marketing purposes, you may exercise this right at any time as described above. If your data are processed for other purposes, you have the right to object only on grounds relating to your particular situation.

After you have exercised your right to object, we will no longer process your personal data for such purposes unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims.

This does not apply to the processing of personal data for direct marketing purposes. In such a case we will no longer process your personal data for such purposes.

9. Social Media: Facebook, Google, Twitter, Instagram

Our presence on social networks and platforms serves a better, active communication with our customers and interested parties. We inform there about our products and current special offers. When you visit our websites on social media, your data may be automatically collected and stored for market research and advertising purposes. So-called usage profiles are created from these data using pseudonyms. These can be used, for example, to place advertisements inside and outside the platforms that presumably correspond to your interests. For this purpose, cookies are usually used on your terminal. The visitor behaviour and the interests of the users are stored in these cookies. This serves in accordance with Art. 6 para. 1 lit. f GDPR to protect our legitimate interest in an optimised presentation of our offer and effective communication with customers and interested parties that are overriding in the balancing of interests. If you are asked by the respective social media platform operators for a consent into the data processing, e.g. with the help of a checkbox, the legal basis of data processing is Art. 6 para. 1 lit. f GDPR. If the aforementioned social media platforms are headquartered in the USA, the following applies: The European Commission has adopted a decision on appropriateness for the USA. This goes back to the EU-US Privacy Shield. A current certificate for the respective company can be downloaded here.
For detailed information on the processing and use of the data by the providers on their pages as well as a contact option and your rights and setting options for the protection of your privacy, in particular opt-out options, please refer to the providers' data protection information linked below. If you need help or have any questions, please do not hesitate to contact us.

10. Data Security and Encryption

Our online shop is completely encrypted, furthermore our "extended validation" SSL certificate guarantees our identity. All your personal data will be only transmitted over the Internet using a 256-bit SSL encryption.
You can identify a SSL-encrypted website by the https://www... at the beginning of the Internet address and -depending on your browser- by a small green padlock symbol in the browser's address bar. Sites with "extended validation" also display the company's name and country next to it. We recommend that you always make sure to see this security icon when entering personal data. However, this encryption may be ineffective if your computer is infected by a virus or spyware (trojan horses), therefore we recommend the use of an up-to-date virus protection program!

Access to your customer data is protected by your personal password. Please make sure to choose a strong password consisting of at least 8 characters with numbers, lower and upper case letters and special characters and treat it confidentially. After using our shop, please make sure to log out of our shop and close the browser windows - especially when using a shared computer. We secure our website and all other IT systems with the best possible technical and organizational measures against loss, destruction, access and modification or distribution of your data by unauthorized persons.