Last updated: Jan 2020
Download: Datenschutzbestimmungen (deutsch)
SIAN DESIGN GbR is complying with the applicable data protection provisions in collecting, using and processing of personal data. All personal
data disclosed by you (title, name, address, email address, phone number, bank details) will exclusively be collected, processed and stored by us in accordance with the provisions of the applicable data protection laws.
For the use of the website, the delivery of goods or the provision of services, we collect various types of data, some of which are provided by you
as a user and some of which are necessary for the use of the website or arise from the use of the website. Personal data are individual details
about personal or professional circumstances of a specific or identifiable natural person, such as your name, your address, your telephone
number, your date of birth, your payment data and your IP address. Your personal data will only be passed on or otherwise transferred to third
parties if the transfer is necessary for the purpose of contract processing (for example for payment processing or sending goods via parcel
service) or if you have given your express consent. The information is not used for any other purpose. If we use contracted service providers for
individual functions of our offers via this website or would like to use your data for advertising purposes, we will inform you in detail about the
respective processes below. We also specify the defined criteria for the storage period. The following data protection principles apply to the use of our website and other services offered through it (e.g. contact form, registration, shop):
- We protect your personal data by taking all reasonable and necessary technical and organizational possibilities so that they are not accessible to unauthorized third parties. Our website and other services offered through it therefore use appropriate encryption mechanisms for the provision of content and during the input and transmission of data. When communicating by e-mail, we also recommend the use of encryption for confidential information.
- Persons responsible in the meaning of. Art. 4 Para. 7 General Data Protection Regulation (GDPR) are Antonia Frey and Simon Vorhammer, c/o SIAN DESIGN GbR - Frey + Vorhammer - , Lamontstraße 6, 81679 Munich, Germany, email@example.com (see also via „Imprint“ at our Website).
- If you send us e-mail messages or other messages, in particular comments, or enter them directly on the Website, we will retain such messages in order to process the request, respond to questions and improve the Website, products and services. We delete the data arising in this context after the storage is no longer necessary or limit the processing if statutory retention obligations exist.
- If you provide feedback (for example on the Website), we may use and disclose this feedback for any purpose, as long as we do not provide it with your personal data, i.e. anonymously or pseudonymously. The collection of data contained in such feedback and the handling of all personal data contained therein is in accordance with the data protection principles set out herein.
- You have the right to ask about your personal data free of charge at any time. Furthermore, you have the right at any time to revoke your consent to the use of your personal data with effect for the future and to request correction or deletion of the data stored by us.
- In particular, you have the following rights towards us with regard to the personal data related to you:
• Right to access information,
• Right to correction or erasure,
• right to limitation of processing,
• right of withdrawal of the consent to processing,
• Right to data transferability.
- You also have the right to complain to a data protection supervisory authority about our processing of your personal data.
- Please contact the data protection officer at firstname.lastname@example.org to request information and for withdrawal as well as for notification of a request for deletion; the data protection officer will then provide the information immediately or confirm the execution of your request for deletion. A deletion requested by you will then be carried out subject to statutory retention obligations. If a deletion cannot take place completely due to legal storage obligations, we limit the processing of the data concerned and inform you accordingly.
- Data that is provided actively by you as user of the website or services:
a) If you use our service, your personal data, to the extent that they are required for the establishment, content or modification of the contractual relationship (master data), will be used for the performance of the contract concluded between us, such as for delivery of the products ordered by you to the address specified by you. Within the scope of the statutory provisions, we are additionally saving data to the extent permissible to contact you with regard to new products of our company at a later date. Any further use of your master data for purposes or advertising, market research or the appropriate tailoring of our offering shall require your explicit consent. However, we may collect non-personal, statistical information data about use of the website, such as pages visited, times and volume of use of the services as well as Traffic Data. Traffic data includes logs, details of networks, time of log-on or access, length of sessions and similar systems data.
b) For the handling of your order in our online store, it is necessary to transmit your personal data to third parties (e.g. subcontractors, suppliers or carriers). The data transmitted to third parties will be used by such third parties exclusively for he performance of the obligations or tasks for which they are responsible.
c) Your personal data, which are necessary to user offers and to issue invoices (use data) will also exclusively be used for the handling of the sales contracts concluded between us. Such use data are in particular the characteristics to identify you as a user, information on the beginning, end, and scope of the respective use and data on the telemedia used by you as a user.
d) If you register for the subscription of a newsletter, this registration can take place under indication of the e-mail address without further data. The user can voluntarily provide further information when registering for the newsletter. We use the so-called double opt-in procedure for sending the newsletter. As part of this process, we first send the user an e-mail to the specified e-mail address. However, the user will not receive a newsletter by e-mail until the user clicks on the link received in the e-mail and has expressly confirmed to us that we should activate the newsletter service. After your confirmation we will save your e-mail address only for the purpose of sending you the newsletter. The legal basis is Art. 6 Para. 1 S. 1 lit. a GDPDR. We would like to point out that we evaluate your user behaviour when sending the newsletter. For this analysis, the e-mails sent contain so-called web beacons or tracking pixels, which represent single-pixel image files stored on our website. For evaluation purposes, we link the above data and web beacons to your e-mail address and an individual ID. You can object to this tracking at any time by clicking on the seParate link provided in each e-mail or by informing us by another contact method. The information is stored for as long as you have subscribed to the newsletter. After a cancellation we store the data purely statistically and anonymously. If at any time you no longer wish to receive newsletters from us, you can object to the newsletter subscription at any time without incurring any costs other than the transmission costs according to the basic rates. A message in text form to the contact data specified in the imprint is sufficient for this. Of course you will also find a unsubscribe link in every newsletter.
e) The data created by users within the scope of using the website via a login or a newsletter registration are stored on servers operated in our name. However, the server operators are subject to the same data protection standards as we are and are operated in the European Union.
- Use of the Online-Store:
a) If you would like to order in our Online-Store, it is necessary for the conclusion of the contract that you enter your personal data, which we need for the completion of your order. Required information for the execution of the contracts are marked seParately, any further information is voluntary. We process the data provided by you to process your order. For this purpose, we can pass on your payment data to our payment service provider. The legal basis for this is Art. 6 Para. 1 S. 1 lit. b GDPR.
b) You can voluntarily create a customer account through which we can store your data for future purchases. When you create an account under „my account“, the data you have provided will be stored until you delete the data or request for deletion. All other data, including your user account, can always be deleted in the customer area.
c) We may also process the information you provide to inform you of other interesting products in our portfolio or to send you e-mails containing technical information.
d) Due to commercial and tax regulations, we are obliged to store your address, payment and order data for a period of ten years. However, after two years we will restrict processing, i.e. this data will only be used to comply with legal obligations.
e) To prevent unauthorized access to your personal data, especially financial data, the order process is encrypted using TLS technology.
Data collected directly in the context of your use of the website:
a) While a purely informational use of the website, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which are technically necessary for us to display our website to you and to guarantee its stability and security (legal basis is Art. 6 Para. 1 S. 1 lit. f GDPR):
• IP address (stored shortened in accordance with data protection regulations)
• date and time of the request
• Time zone difference to Greenwich Mean Time (GMT)
• Content of the request (specific page)
• Access status/HTTP status code
• the amount of data transferred in each case
• Website from which the request originates
• Browser name and version, language setting
• Transient cookies are automatically deleted when you close your browser. This includes in particular the session cookies. These store a so-called session ID, with which different requests of your browser can be assigned to the common session. This will allow your computer to be recognized when you return to our website. Session cookies are deleted when you log out or close your browser.
• Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. You can delete cookies at any time in the security settings of your browser.
- You can set your browser to notify you when a cookie is sent. This opens up the possibility of either accepting or rejecting a cookie. The information collected and analyzed is used to improve the services and the website, to personalize the web experience, and to allow easy login to permanently set login cookies.
- We may use the services of third parties to evaluate the efficiency of the website and services and to determine how visitors use the website and or the services and, where appropriate, to provide a personalized user experience when evaluating cookies. The website may
use web beacons (tracking pixels) and cookies provided by third parties for this purpose. The information collected by the provider includes the pages visited, navigation patterns and similar data. This data enables us to find out which product information is most interesting for users and which offers users prefer to view. Furthermore, we do not exclude the possibility that we transmit anonymous usage data for market research purposes. Although we may have commissioned third parties to log the data originating from our website, we have control over how this data may or may not be used. The cookie itself does not contain any personal data, but if you provide personal data when visiting the website and do not delete the cookie from your browser after providing this data, the provider collects the non-personal data stored in the cookie (such as the number of visits to the provider) and stores and processes this anonymously.
If we use Flash cookies, these are not collected by your browser, but by your Flash plug-in. We also use HTML5 storage objects that are stored on your mobile device. These objects store the required data independently of your browser and do not have an automatic expiry date. If you do not wish the Flash cookies to be processed, you must install an appropriate add-on, e.g. „Better Privacy“ for Mozilla Firefox (https://addons.mozilla.org/de/firefox/addon/betterprivacy/) or the Adobe Flash killer cookie for Google Chrome. You can prevent the use of HTML5 storage objects by using private mode in your browser. We also recommend that you regularly delete your cookies and your browser history manually.
Data collected in the context of the use of the website by analysis tools (WebAnalytics) used by us with our website:
The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. However, by activating IP anonymisation on this website, Google will previously reduce your IP address within Member States of
the European Union or in other states party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. For the exceptional cases in which personal data is transferred to the USA, Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework. The legal basis for the use of Google Analytics is Art. 6 Par. 1 S. 1 lit. f GDPR.
On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide the Internet use.
downloading and installing the browser plug-in available under the following link:http://tools.google.com/dlpage/gaoptout?hl=en.
Third-party information: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.
b) This website uses etracker technology (http://www.etracker.com) to collect and store data for marketing and optimisation purposes.
These data can be used to create user profiles under a pseudonym. Cookies may be used for this purpose. The data collected with
eTracker technologies will not be used to personally identify the visitor to this website and will not be combined with personal
data about the bearer of the pseudonym without the seParately given consent of the person concerned. The collection and storage
of data can be revoked at any time with effect for the future by clicking on the following link.
We use eTracker to analyse and regularly improve the use of our website. We can improve our offer and make it more interesting for
you as a user. The collected data is stored permanently and analysed pseudonymously. The legal basis for the use of eTracker is Art. 6
Para. 1 sentence 1 lit. f GDPR.
Third-party information: etracker GmbH, Erste Brunnenstraße 1, 20459 Hamburg; https://www.etracker.com/de/datenschutz.html.
- Use of Social-Media-Plug-ins:
a) We currently use the following social media plug-ins: Facebook. We use the so-called two-click solution. This means that when you
visit our site, no personal data is initially passed on to the providers of the plug-ins. You can recognize the provider of the plug-in
used by the logo shown and/or the additional text information. We offer you the possibility to communicate directly with the provider
of the plug-in via such a button. But only if you click on the marked field and thereby activate it, the plug-in provider receives the
information that you have accessed the corresponding website. In the case of Facebook and Xing, the IP address is anonymized
immediately after collection, according to the respective provider in Germany. By activating the plug-in, personal data is transferred
from you to the respective plug-in provider and stored there (for US providers in the USA). Since the plug-in provider collects data
mainly via cookies, we recommend that you delete all cookies before clicking on not yet activated button by using your browser‘s security
b) We have no influence on the data collected and data processing processes, nor are we aware of the full extent of data collection,
the purposes of processing, the storage periods. We also have no information on the deletion of the data collected by the plug-in
c) The plug-in provider stores the data collected about you as user profiles and uses these for the purposes of advertising, market
research and/or demand-oriented design of its website. Such an evaluation takes place in particular (also for not logged in users)
for the representation of demand-fair advertisement and in order to inform other users of the social network about your activities
on our website. You have a right of objection to the creation of these user profiles, whereby you must contact the respective plug-in
provider to exercise this right. Through the plug-ins we offer you the possibility to interact with social networks and other users, so that
we can improve our offer and make it more interesting for you as a user. The legal basis for the use of the plug-ins is Art. 6 Para. 1 S. 1
lit. f GDPR.
d) The data is passed on regardless of whether you have an account with the plug-in provider and are logged in there. If you are logged in with the plug-in provider, your data collected with us will be directly assigned to your existing account with the plug-in provider.
If you click the activated button and, for example, link the page, the plug-in provider also stores this information in your user account
and shares it publicly with your contacts. We recommend that you log out regularly after using a social network, especially before
activating the button, as this way you can avoid being assigned to your profile with the plug-in provider.
e) Further information on the purpose and scope of data collection and its processing by the plug-in provider can be found in the data
protection declarations of these providers notified below. They will also provide you with further information about your rights in this
regard and setting options to protect your privacy:
Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php;
further information in regard to personal data processed and/or stored:
your-info-on-other#applications as well as http://www.facebook.com/about/privacy/your-info#everyoneinfo. Facebook has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
Changes to data protection policy
SIAN DESIGN may undertake changes to its data protection policy. In that case we will ensure that you are informed of such changes, either via a special message on our website, or via a customized notice, for example when we send out newsletters.