Privacy Policy
The person responsible for data handling is
Mayer Ute
Ringstr. 7
89426 Wittislingen
Email: info@mayer-chess.de
Phone: +49 907695830
Thank you for your interest in our online shop. The protection of your privacy is very important to us. Below we inform you in detail about the handling of your data
1. Acess data and hosting
You can visit our website without providing any personal information. Each time you visit a website, the web server only automatically saves a server log file, which contains, for example, the name of the requested file, your IP address, the date and time of the request, the amount of data transferred and the requesting provider (access data) and documents the request. This access data will only be analyzed for the purpose of ensuring trouble-free operation of the site and improving our offer. This is to protect our legitimate interests in a correct presentation of our offer in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO, which predominate in the context of a balancing of interests. All access data will be deleted no later than fourteen days after the end of your visit to our website.
Hosting
The services for hosting and displaying the website are partly provided by our service providers as part of processing on our behalf. Unless otherwise stated in this privacy policy, all access data and all data collected in the forms provided on this website will be processed on their servers. If you have any questions about our service providers and the basis of our cooperation with them, please use the contact option described in this privacy policy.
2. Data processing for contract management and for contacting us
2.1 Data processing for contract management
For the purpose of contract fulfillment (including inquiries and processing of any existing warranty and service disruption claims as well as any legal update obligations) in accordance with Art. 6 para. 1 sentence 1 lit. b DSGVO, we collect personal data if you voluntarily provide it to us as part of your order. Required fields are marked as such, as in such cases we need the data to process the contract and we cannot send the order without it. Which data is collected can be seen in the relevant input forms.
Further information on the processing of your data, especially on the transfer to our service providers for the purpose of your order, payment and shipping handling, can be found in the following sections of this privacy policy. After completing the contract, your data will be limited for further processing and deleted
after expiry of the retention periods under tax and commercial law in accordance with Art. 6 para. 1 sentence 1 lit. c DSGVO, unless you have explicitly agreed on further use of your data in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.
2.2 Customer account
If you have given your permission according to Art. 6 para. 1 sentence 1 lit. a DSGVO by deciding to open a customer account, we will use your data for the purpose of opening a customer account and saving your data for other future orders. You can delete your customer account at any time by sending a message to the contact option given in this privacy policy. After deleting your customer account, your data will be deleted unless you have explicitly agreed to the further use of your data in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO or we have reserved the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.
2.3 Contact us
As part of customer communication, we collect personal data to process your requests in accordance with Art. 6 para. 1 sentence 1 lit. b DSGVO if you provide us this data when contacting us (for example via contact form, live chat tool or email). Required fields are marked as such, since in these cases we absolutely need the data to be able to answer your request.
Which data is collected can be seen from the input forms. Your data will be deleted after your request has been fully answered. Your data will be deleted unless you have explicitly agreed to the further use of your data in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO or we have reserved the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.
3. Data processing for the purpose of delivery
In order to fulfill the contract in accordance with Art. 6 para. 1 sentence 1 lit. b DSGVO, we pass on your data to the shipping provider responsible for the delivery, insofar as this is necessary for the delivery of the ordered goods. If you have any questions about our shipping providers and the basis of our cooperation with them, please use the contact option described in this privacy policy.
Data transfer to shipping providers for the purpose of shipping notification
If you have given us your explicit permission for this during or after your order, we will pass your e-mail address and telephone number to the selected shipping service provider in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO so that they can contact you before delivery for the purpose of delivery notification and coordination.
Permission can be withdrawn at any time by sending a message to the contact option described in this privacy policy or directly to the shipping provider at the contact address listed below. After you withdraw your permission, we will delete the data you have provided for this purpose, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration. If you have any questions about our shipping
providers and the basis of our cooperation with them, please use the contact option described in this privacy policy.
DHL Paket GmbH
Sträßchensweg 10
53113 Bonn
Germany
Andreas Schmid Logistik AG
Andreas-Schmid-Straße 1
86368 Gersthofen
Germany
4. Data processing for payment
We work together with these partners to process payments: technical service providers, credit institutions, payment service providers.
4.1 Data processing for transaction
Depending on the selected payment method, we pass the required data for processing the payment to our technical service providers, who work for us as part of a processing contract, or to the authorized credit institutions or to the selected payment service provider, insofar as this is necessary for processing the payment. This is for the fulfillment of the contract pursuant to Art. 6 para. 1 sentence 1 lit. b DSGVO. In some cases, the payment service providers collect the data required for processing the payment themselves, for example on their own website or via a technical integration in the ordering process. In this regard, the privacy policy of the respective payment service provider applies. If you have any questions about our partners for payment processing and the basis of our cooperation with them, please use the contact option described in this privacy policy.
4.2 Data processing for the purpose of fraud prevention and optimization of our payment processes
If necessary, we give our service providers further data, which they use together with the data necessary for processing the payment as our processor to prevent fraud and optimize our payment processes (for example invoices, processing of disputed payments, accounting support). In accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO, this is to protect our legitimate interests, which outweigh the interests of others, in our protection against fraud and in efficient payment management.
4.3 Credit check
If we deliver before payment (order with invoice), we request identity and credit information from specialized service providers (credit agencies). For this purpose, we transmit your personal data required for a credit check to:
SCHUFA Holding AG
Kormoranweg 5
65201 Wiesbaden, Germany
This is necessary to protect our legitimate interests, to Art. 6 para. 1 sentence 1 lit. f DSGVO, in estimating the financial standing and willingness to pay of our potential customers in advance before the contract is signed and therefore to avoid purchase payment defaults and is necessary for the contract to be concluded in accordance with Art. 22 para. 2 lit. a DSGVO. Appropriate measures to safeguard your rights, freedoms and legitimate interests are taken into regard. You have the opportunity to express your point of view and contest the decision by contacting the address given in this privacy policy. Once the contract has been completed, your data processed for this purpose will be deleted, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.
4.4 Involvement of debt collection service providers
We will pass on your data to a debt collection service provider, Europa Inkasso Service GmbH, Am-Clef 60- 62, 42275 Wuppertal, Germany, insofar as our claim for payment has not been settled despite a prior reminder. In this case, the debt will be collected directly by the debt collection service provider. This is for the fulfillment of the contract according to Art. 6 para. 1 sentence 1 lit. b DSGVO as well as the protection of our legitimate interests in an effective assertion or enforcement of our payment claim according to Art. 6 para. 1 sentence 1 lit. f DSGVO, which predominate in the context of a balancing of interests.
5. Promotion with E-Mail, Letter
5.1 E-Mail-Newsletter with registration
If you register for our newsletter, we will use the data provided for this purpose or provided separately by you to regularly send you our email newsletter based on your consent in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO. You can deregister from the newsletter at any time by sending a message to the contact option described below. After deregistration, we will delete your email address from the recipient list, unless you have expressly consented to further use of your data in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.
5.2 E-Mail Newsletter without registratoin and your right to withdraw
If we receive your e-mail address in connection with the sale of goods or services and you have not refused on the basis of § 7 para. 3 UWG we reserve the right to regularly send you offers for similar products, such as those you already bought. This serves to safeguard our legitimate interests, which predominate in the context of a balancing of interests, in a promotional approach to our customers in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO.
You can withdraw this use of your e-mail address at any time by sending a message to the contact option described in this privacy policy. After withdrawal, we will delete your e-mail address from the recipient list, unless you have expressly consented to further use of your data in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.
5.3 Sending evaluation requests by E-Mail
If you have given us your explicit permission to do so during or after your order in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO, we will use your email address to ask you to rate your order via the rating system we use. This consent can be withdrawn at any time by sending a message to the contact option described in this privacy policy. Once you have withdrawn your consent, we will delete your email address from the recipient list, unless you have expressly consented to further use of your data in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration. The evaluation requests may also be sent by our service provider Trusted Shops SE Subbelrather Str. 15C, 50823 Cologne (“Trusted Shops”).
We receive information on the status of evaluation requests from Trusted Shops (for example, whether the evaluation request has been sent and whether it has been received). This is done in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO to fulfill our legitimate interest in receiving information about the evaluation invitations in order to make any necessary optimization based on this and to fulfill the legitimate interest of Trusted Shops in being able to offer this service. We are responsible together with Trusted Shops for sending rating requests and for collecting and displaying rating and status information.
Within the scope of the joint responsibility existing between us and Trusted Shops, please contact Trusted Shops in case of data protection questions and to assert your rights, whose contact details you can find at https://www.trustedshops.de/impressum-datenschutz/#datenschutz. Further information on data protection can be found at the following link https://www.trustedshops.com/tsdocument/CONSUMER_MEMBERSHIP_TERMS_de.pdf. Regardless of this, you can also contact us at any time using the contact option described in this privacy policy. If necessary, your request will then be forwarded to the other responsible person for answering.
5.4 Mail marketing and your right to withdraw
In addition, we reserve the right to use your first and last name and your postal address for our own marketing purposes, for example to send you interesting offers and information about our products by post. This is to safeguard our legitimate interests, which predominate in the context of a balancing of interests, in a promotional approach to our customers in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO. You can withdraw your consent to the storage and use of your data for this purpose at any time by sending a message to the contact option described in this privacy policy.
After you have withdrawn your permission, we will delete your address from the recipient list unless you have expressly consented to further use of your data in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.
6. Cookies and other technologies
6.1 General information
In order to make visiting our website attractive and enable the use of certain functions, we use various technologies, including cookies. Cookies are small text files that are automatically stored on your electronic device. Some of the cookies we use are deleted at the end of the browser session, in other words after you close your browser (session cookies). Other cookies remain on your end device and enable us to recognize your browser on your next visit (persistent cookies).Privacy protection for end devices
When using our online offer, we use absolutely necessary technologies in order to be able to provide the expressly requested telemedia service. The storage of information in your end device or access to information that is already stored in your end device does not require permission in this respect. In the case of functions that are not absolutely necessary, the storage of information in your end device or access to information that are already stored on your device requires your permission.We would like to inform you that if you do not give your permission, parts of the website may not be fully usable. Any permission you have given will remain in place until you change or reset the relevant settings on your device.
Any downstream data processing by cookies and other technologies
We use such technologies that are absolutely necessary for the use of certain functions of our website (for example, the shopping cart function). These technologies collect the IP address, time of visit, device and browser information as well as information about your use of our website (for example information on the content of the shopping cart) are collected and stored. In the context of a balancing of interests, this serves legitimate interests in an optimized presentation of our offer in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO.We also use technologies to fulfill the legal obligations to which we are subject (for example, to be able to prove consent to the processing of your personal data) as well as for web analysis and online marketing. Further information on this, including the respective legal basis for data processing, can be found in the following sections of this privacy policy.
Cookie-Settings
You can find the cookie settings for your browser under the following links:Microsoft EdgeTM / SafariTM / ChromeTM / FirefoxTM / OperaTM
If you have given your consent to the use the technologies in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO, you can withdraw your consent at any time by sending a message to the contact option described in the data protection declaration.
Alternatively, you can also visit the following link: www.mayer-chess.de. If you do not accept cookies, the functionality of our website may be limited.
6.2 Consent Manager Platform (CMP)
On our website we use a service for consent management (“Consent Manager Platform (CMP)”) to inform you about the cookies and other technologies we use on our website and to collect, manage and document any consent you may have given for the processing of your personal data by these technologies. This is necessary according to Art. 6 para. 1 sentence 1 lit. c DSGVO to fulfill our legal obligation according to Art. 7 para. 1 DSGVO to be able to prove your agreement to the processing of your personal data, to which we are subject. The Consent Manager Platform (CMP) we use is an offer from Shopware AG, Ebbinghoff 10, 48624 Schöppingen, Germany, which processes your data on our behalf.After you submit your cookie declaration on our website, the web server saves the following data: IP address, device information, browser information, set language, accessed website or its URL, date and time of your declaration of consent and information about your consent behavior. In addition, the following technologies are used, which contain information about your consent behavior: Cookies, log files
Your data will be deleted after 14 days unless you have expressly consented the further use of your data in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this declaration.
7. Integration of the Trusted Shops Trustbadge/other widgets
Trusted Shops widgets are integrated on this website to display Trusted Shops services (for example, seal of approval, collected ratings). This serves to protect our legitimate interests, which predominate in the context of a balancing of interests, in optimal marketing by enabling secure shopping in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO. The Trustbadge and the services promoted with it are an offer from Trusted Shops SE, Subbelrather Str. 15C, 50823 Cologne (“Trusted Shops”), with which we share data protection responsibility in accordance with Art. 26 DSGVO. In the context of this data protection information, we inform you below about the essential contents of the contract in accordance with Art. 26 para. 2 DSGVO.Within the framework of the joint responsibility existing between us and Trusted Shops SE, for data protection issues and to assert your rights, please contact Trusted Shops using the contact options provided in the data protection policy. Regardless of this, you can always contact the responsible person of your choice. If necessary, your request will then be forwarded to the other responsible person for answering.
7.1 Data processing with integration of the trust badge/other widgets
The trust badge is provided by a US CDN provider (Content Delivery Network). An appropriate level of data protection is ensured in each case by an EU Commission decision on suitability, which is available for the USA athttps://commission.europa.eu/system/files/2023-07/Adequacy%20decision%20EU- US%20Data%20Privacy%20Framework_en.pdf. Service providers used from the USA are generally certified under the EU-U.S. Data Privacy Framework (DPF). Further information can be found at https://www.dataprivacyframework.gov/s/. If used service providers are not certified under the DPF, standard contractual clauses have been concluded as a suitable guarantee.When the Trustbadge is visited, the web server automatically saves a server log file, which also includes your IP address, the date and time of the visit, the amount of data transferred and the requesting provider (access data) and documents the visit. The IP address is anonymized immediately after collection so that the stored data cannot be assigned to your person. The anonymized data is used in particular for statistical purposes and for error analysis.
7.2 Data processing after your order
After the order is completed, order information (order totals, order number and product bought) and your e-mail address hashed using a cryptographic one-way function are transmitted to Trusted Shops. The legal basis is Art. 6 para. 1 sentence 1 lit. f DSGVO. This is used to check whether you are already registered for services with Trusted Shops and is therefore necessary for the fulfillment of our and Trusted Shops' legitimate interests in the specific transactional rating services linked to the specific order in accordance with Art. 6 para. 1 sentence 1 lit. f DSGVO. If you have registered, further processing will take place in accordance with the contract between you and Trusted Shops. If you have not yet registered for the services, you will then be given the opportunity to do so for the first time. Further processing after registration also depends on the contract with Trusted Shops. If you are not yet registered for the services, you will then be given the opportunity to give your permission to receive rating requests. If you do not give your permission, all transmitted data will be automatically deleted by Trusted Shops and a personal connection will no longer be possible. Trusted Shops uses service providers in the areas of hosting, monitoring and logging. The legal foundation is Art. 6 para. 1 lit. f DSGVO to ensure trouble-free operation. Processing may take place in third countries (USA and Israel). An appropriate level of data protection is ensured in each case by an adequacy decision of the EU Commission, which is available for the USA https://commission.europa.eu/system/files/2023-07/Adequacy%20decision%20EU- US%20Data%20Privacy%20Framework_en.pdf and for Israel https://eur-lex.europa.eu/legal- content/DE/TXT/HTML/?uri=CELEX:32011D0061. Service providers from the USA are generally certified under the EU-U.S. Data Privacy Framework (PDF). Further information can be found at https://www.dataprivacyframework.gov/s/ . If used service providers are not certified under the PDF, standard contractual clauses have been concluded as a suitable guarantee.8. Social Media
Our online presence on Facebook (by Meta), Instagram (by Meta)
If you have given your permission to the respective social media operator in accordance with Art. 6 para. 1 sentence 1 lit. a DSGVO, your data will be automatically collected and stored for market research and marketing purposes when you visit our online presences on the social media mentioned above, from which user profiles are created using pseudonyms. These can be used, for example, to place promotional offers within and outside the platforms that are likely to match your interests. Cookies are generally used for this purpose. For detailed information on the processing and use of data by the respective social media operator as well as a contact option and your rights and setting options for protecting your privacy, please refer to the providers' data protection notices linked below. If you still need help in this regard, you can contact us.Facebook (by Meta) is a service provided by Meta Platforms Ireland Ltd, Block J, Serpentine Avenue, Dublin 4, Ireland (“Meta Platforms Ireland”). The information automatically collected by Meta Platforms Ireland about your use of our online presence on Facebook (by Meta) is usually transferred to a server of Meta Platforms, Inc, 1601 Willow Road, Menlo Park, California 94025, USA and stored there. Data processing in the context of a visit to a Facebook (by Meta) fan page is based on an agreement between jointly responsible parties in accordance with Art. 26 DSGVO. Further information (information on Insights data) can be found https://www.facebook.com/legal/terms/information_about_page_insights_data.
Our service providers are located and/or use servers in the following countries for which the European Commission has determined an adequate level of data protection by decision: USA, Canada, Japan, South Korea, New Zealand, United Kingdom, Argentina. The adequacy decision for the USA applies as the basis for third country transfers, provided that the respective service provider is certified. Certification is available. Our service providers are located and/or use servers in these countries: Australia, Hong Kong, India, Indonesia, Malaysia, Singapore, Thailand, Taiwan, Brazil, Mexico. There is no adequacy decision from the European Commission for these countries. Our cooperation with them is based on these guarantees: standard data protection clauses of the European Commission.
Instagram (by Meta) is a service provided by Meta Platforms Ireland Ltd, Block J, Serpentine Avenue, Dublin 4, Ireland (“Meta Platforms Ireland”). The information automatically collected by Meta Platforms Ireland about your use of our online presence on Instagram is usually transferred to a server of Meta Platforms, Inc, 1601 Willow Road, Menlo Park, CA 94025, USA, Menlo Park, California 94025, USA and stored there. Data processing in the context of a visit to an Instagram (by Meta) fan page is based on an agreement between jointly responsible parties in accordance with Art. 26 DSGVO. Further information (information on Insights data) can be found here: https://www.facebook.com/legal/terms/information_about_page_insights_data. Our service providers are located and/or use servers in the following countries for which the European Commission has determined an adequate level of data protection by decision: USA, Canada, Japan, South Korea, New Zealand, United Kingdom, Argentina. The adequacy decision for the USA applies as the basis for third country transfers, provided that the respective service provider is certified. Certification is available.
Our service providers are located and/or use servers in these countries: Australia, Hong Kong, India, Indonesia, Malaysia, Singapore, Thailand, Taiwan, Brazil, Mexico. There is no adequacy decision by the European Commission for these countries. Our cooperation with you is based on these guarantees: standard data protection clauses of the European Commission.
9. Contact options and your rights
9.1 Your rights
As the data subject, you have the following rights:- in accordance with Art. 15 DSGVO, the right to request information about the personal data processed by us to the extent specified therein;
- in accordance with Art. 16 DSGVO, the right to demand the correction of incorrect or incomplete personal data stored by us without delay;
- in accordance with Art. 17 DSGVO, the right to demand the deletion of your personal data stored by us, insofar no further processing is necessary to exercise the right to freedom of expression and information; to fulfill a legal obligation; for reasons of
- public interest or for the establishment, exercise or defense of legal claims;
- legal claims is required;
- in accordance with Art. 18 DSGVO, the right to request the processing of your
- personal data to the extent that you contest the accuracy of the data
- is contested; the processing is illegal, but you refuse to delete it; we
- no longer need the data, but you need it to enforce or defend your rights.
- Need to defend legal claims or
- you have objected to the processing according to Art. 21 GDPR;
- in accordance with Art. 20 DSGVO, you have the right to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another person responsible;
- in accordance with Art. 77 DSGVO, the right to complain to a supervising authority. Generally, you can contact the supervising authority of your usual place of residence or workplace or our company headquarters.
Right of objection
Insofar as we are processing personal data as explained above in order to safeguard our legitimate interests, which outweigh your interests, you can withdraw your permission for this processing with effect for the future. If the processing is carried out for direct marketing purposes, you can always exercise this right as described above. If the processing is carried out for other purposes, you only have the right to withdraw your permission if there are reasons arising from your special situation.After exercising your right to withdraw your permission, we will no longer process your personal data for these purposes unless we can demonstrate that there are legitimate reasons for processing that outweigh your interests, rights and freedoms, or if the processing serves the establishment, exercise or defense of legal claims. This does not apply if the processing is for direct marketing purposes. In this case, we will no longer process your personal data for this purpose.