Data Privacy Policy

After May 25th 2018 the provisions of theEU General Data Protection Regulation(hereafter referred to as “GDPR”) come into effect for all of Europe. Subsequently, we would like to outline how to handle the personal data processed at Productz MiB GmbH in accordance with this new regulation (see GDPR Article 13). Please carefully read through our data privacy policy. Should you have any comments or questions about this privacy policy, you can send them at any time to the e-mail address listed in Section 1.

  1. Name and Contact Details of the Person(s) Responsible for Processing

    This privacy applies for the data processing handled by:
    Person(s) responsible for processing: Productz MiB GmbH (hereafter referred to as “Productz”)
Linienstraße 23, 10178 Berlin, Germany
    E-Mail:hello@productz.com

  2. Collection and Storage of Personal Data, as Well as Processing Type and Purpose
    1. Visiting the Website

      When accessing our websiteproductz.com,information will automatically be sent to our website’s server by the browser being used on your device. This information will temporarily be saved in what is known as a log file. The following data is recorded without requiring any action from you and then saved for 6 months until it is automatically deleted:

      • IP address of the requesting device
      • Date and time of the access
      • Name and URL of the retrieved file
      • Website from which the access took place (known as the referrer URL)
      • Model and operating system of your device
      • Name of your ISP
      • Browser type and version as well as other information provided by your browser (such as the location, language set-up, add-ons, screen resolution, etc.)

      The aforementioned data is used by us for the following purposes:

      • To guarantee a smoothly established connection to the website
      • To guarantee a user-friendly experience of our website
      • To evaluate the security and stability of the system
      • And for other administrative purposes

      The legal basis for data processing is Art. 6 Para. 1 Sent. 1 lit. f) of the GDPR. Our legitimate interest results from the data collection purposes listed above. In no case do we use the collected data for the purpose of drawing conclusions about your person.

      Furthermore, we also use cookies and analytic services when our website is visited. Find out more detailed information about this in Sections 4 and 5.

    2. Creating a User Account

      With us you have the opportunity to create a password-protected user account with your e-mail address, which we then use to store your personal data. This helps provide you with the most user-friendly experience possible by enabling easy, quick and personalized product ratings and the saving of personalized settings and favorite products to your account.

      If you would like to create a password-protected user account with us, we require the following information:

      • Title, first name, last name
      • Address
      • Valid e-mail address

      For the creation of the account you must additionally provide a password of your own choosing. This, together with your e-mail address, enables access to your user account. [In your user account you can view and change your saved information at any time. Alternatively, you can also log in using your Facebook account. Find more information about this in Section 8 “Facebook Login”.]

      We then store your personal data exclusively in a user account, when you have willingly agreed to this as according to Art. 6 Para 1. Sent. 1 lit. a) of the GDPR.

      The creation of a user account is not necessary for the use of our website.

      Upon deletion of your user account, all of your information designated for processing will be automatically deleted, unless, as according to Art. 6 Para. 1 Sent. 1 lit. c) of the GDPR, we are required by tax or commercial law to store your data longer for retention and documentation obligations or because you have consented to the extended storage of your data according to Art. 6 Para. 1 Sent. 1 lit. a) of the GDPR.

    3. Subscribing to Our Newsletter

      As long as you have expressly agreed, as according to Art. 6 Para. 1 Sent. 1 lit. a) of the GDPR, we will use your e-mail address to send you our newsletter regularly. Providing an e-mail address is all that is required to subscribe to the newsletter.

      We will potentially use your e-mail address to send you information about other similar products from our company, as long as you are an existing customer and have not disagreed to the use of your e-mail address.

      It is possible at any time to unsubscribe from both options, such as by using the link at the end of each newsletter. Alternatively, you can at any time send an e-mail toprivacy@productz.comasking to unsubscribe.

    4. Using Our Contact Form

      For any questions we offer the possibility of contacting us by using a prepared form that is available on the website. A valid e-mail address is required for this so that we know who the question is coming from and so that we can provide a reply. Other details can be supplied voluntarily.

      Data processing for our contact purposes takes place, as according to Art. 6 Para. 1 Sent. 1 lit. a) of the GDPR, on the basis of your consent.

      The personal information collected from the contact form is automatically deleted after your request has been settled.

  3. Disclosure of Data to Third Parties

    As a general principle, your personal data will not be given to third parties. In particular, no data will be disclosed to a recipient outside of the European Union or the European Economic Area.

    Otherwise, we only give your personal data to a third party if:

    • As according to Art. 6 Para. 1 Sent. 1 lit. a) of the GDPR, you have expressly agreed to it
    • It is permissible according to Art. 6 Para. 1 Sent. 1 lit. b) of the GDPR and necessary for the execution of our contractual relationship with you
    • There is a legal obligation to do so, as according to Art. 1 Para. 1 Sent. 1 lit. c) of the GDPR
    • Or, as according to Art. 6 Para. 1 Sent. 1 lit. f) of the GDPR, the disclosure is necessary for the assertion, exercise or defense of legal claims and it has not been demonstrated that you have a prevailing protective interest in the non-disclosure of your information
  4. Cookies

    We use cookies on our website. These involve small data files that your browser generates automatically and which are saved on your device (laptop, tablet, smartphone, etc.) when you use our website. Cookies do not harm your device and do not contain viruses, trojans or other malware.

    A cookie stores information that results from the specific device being used in each case. This does not mean, however, that we have direct recognition of your identity.

    The use of cookies serves to make the use of our services for user-friendly for you. We therefore use what are called session cookies in order to recognize that you have visited individual pages of our website and that you have already registered them in your user account. These are automatically deleted after you leave our website.

    Furthermore, to help optimize the user experience, we also use temporary cookies which are stored on your device for a specified amount of time. Should you revisit our site to make use of our services again, it will automatically be recognized that you have visited us before, as will the specific entries and settings that you used, so you will not have to provide them again. Even your custom product lists are saved, so that later you can access them immediately.

    Otherwise, we use cookies to keep a statistical record of how our website is used and to help inform the optimization of our services (see Section 5). These cookies enable us, when you revisit our site, to automatically recognize that you have visited us before. These cookies are automatically deleted after a specifically defined period.

    The data processed by cookies is required for the aforementioned purposes of protecting our legitimate interests, as well as those of third parties, as according to Art. 6 Para. 1 Sent. 1 lit. f) of the GDPR.

    Most browsers accept cookies automatically. You can configure your browser so that no cookies are stored on your computer, or so that you are always prompted before a new cookie is created. However, the complete deactivation of cookies can lead to you losing some of the functions of our website.

  5. Analysis Tools
    1. Google Analytics

      We use Google Analytics, a web analysis service provided byGoogle Inc.,to help design our website and to maintain continuous optimization. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; hereafter referred to as “Google”). Using this, we record the usage of our website and evaluate it statistically. This processing for the aforementioned purposes occurs on the basis of our legitimate interests, as according to Art. 6 Para. 1 Sent. 1 lit. f) of the GDPR. These interests are considered legitimate under the aforementioned provision.

      Pseudonymized user profiles and cookies are created as part of this. The information generated by a cookie about your use of the website, such as

      • Browser type and version
      • Operating system
      • Referrer URL (the website visited beforehand)
      • Hostname of your computer (IP address)
      • Time of the server request

      will be sent to a Google server in the USA and stored there. The information is used in order to evaluate usage of the website, to compile reports about website activities and to provide other services relating to website and internet usage for the purposes of market research and designing the website. Also, if necessary, this information will be sent to a third party, so long as it is prescribed by law or as long as the third party is processing the data on instruction. In no case will your IP address be submitted alongside the other data that Google has. The IP address will be made anonymous, so that it cannot be identified(IP masking).Google adheres to the privacy principles of the “U.S. Safe Harbor Agreement” and is registered as a “safe harbor” program by the U.S. Department of Commerce.

      You can specify settings in your browser to prevent the installation of cookies; we would like to note, however, that in this case it’s possible that not all of the functions of this website can be fully used.

      Furthermore, you can prevent the collection of the data created by the cookie and data related to your use of the website (including your IP address), and you can also prevent this data from being processed by Google by downloading and installing a browser add-on.

      As an alternative to the bowser add-on, particularly for the browsers of mobile devices, you can prevent Google Analytics’ data collection by clicking on this link. It will create an opt-out cookie that prevents the collection of your data when visiting this website in the future. The opt-out cookie only works for this browser and for our website and is specified for your device. If you delete your browser’s cookies, then you will need to set up the opt-out cookie again.

      You can find further information about data privacy andGoogle Analytics at the Google Analytics help page

  6. Social Media Plug-Ins

    On the basis of Art. 6 Para. 1 Sent. 1 lit. f) of the GDPR, we use social network plug-ins on our website to make our company more well known. The commercial purpose behind this is considered a legitimate interest under the GDPR. The responsibility for data protection during operation is to be ensured by the respective service provider. The integration of these plug-ins follows what is known as the “two-click method” so as to best protect our website’s visitors.

    1. Facebook
    2. We use social media plug-ins from Facebook to make use of our website more personalized. This includes the “LIKE” and “SHARE” buttons. This is a function provided by Facebook.

      When you access one of our webpages that has a plug-in, your browser creates a direct connection to the servers of Facebook. The content of these plug-ins is sent directly from Facebook and embedded in the webpage.

      Due to the embedded plug-in, Facebook receives information that your browser has pulled up our website, even if you do not have a Facebook account or are not currently logged in to Facebook. This information (including your IP address) is sent directly from your browser to a Facebook server in the USA and stored there.

      If you are logged into Facebook, Facebook can attribute your visit to our website to your Facebook account. If you interact with the plug-ins, by pressing the “LIKE” or “SHARE” buttons, for example, the corresponding information will be sent directly to one of Facebook’s servers and stored there. Additionally, the information will be published on Facebook and made visible to your Facebook friends.

      Facebook can use this information for advertising, market research and the designing of Facebook webpages. For this purpose, Facebook creates profiles regarding usage, interests and relationships, e.g. to evaluate your use of our website with regard to the advertisements presented to you on Facebook, to inform other Facebook users about your activities on our website and to provide additional services related to the use of Facebook.

      If you do not want Facebook to attribute data related to our website to your Facebook account, then you will need to log out of Facebook before visiting our website.

      For the purpose and scope of the data collection and the additional processing and uses of this data by Facebook, as well as your legal rights and customization options relating to privacy protection, please consultFacebook’s privacy policy.

  7. Facebook Login

    To make registering at our website easier for you, you have the opportunity at the beginning of registration to register using your Facebook account details.

    When registering and logging in with a social media account, the privacy protection and user agreement terms of the respective service provider apply. In each case the input of your account details takes place directly with the server of the relevant service provider. We do not learn your account details. Your respective service provider will notify you when and which of your account’s information is made available to us.

    Insofar as you have given Facebook your agreement, as according to Art. 6 Para. 1 Sent. 1 lit. a) of the GDPR, we are sent your personal information as part of the registration that takes place during the social media login. Of the data that we are given, we only use your name, e-mail address, date of birth and, if you have enabled location tracking, your general location (city and country).

    This information is used to

    • Set up your account and to be able to identify you as one of our contractual partners and
    • Review the plausibility of the data entered

    The legal basis for the use of this data is Art. 6 Para. 1 lit. b) of the GDPR.

    You can undo this connection from your Facebook or Productz account.

    For the purpose and scope of the data collection and the additional processing and uses of this data by your service provider, as well as your legal rights and customization options relating to privacy protection, please consultFacebook’s privacy policy.

  8. User Rights

    You reserve the right:

    • According to Art. 7 Para. 3 of the GDPR, to withdraw at any time the consent that you have given us. This includes as a consequence that we are not permitted to continue with the data processing contingent upon this consent;
    • According to Art. 15 of the GDPR, to request information about your personal data that is being processed by us. In particular, you can request information about the purposes of the processing, the type of personal data, the types of recipients to whom your data has been or is being disclosed, the specified storage period, any rights for the amendment, deletion or limitation of the processing, any legal objections, any right of appeal, the origin of your data if not collected by us, as well as any automized decision processes, including profiling, and, if applicable, significant information about their particular details;
    • According to Art. 16 of the GDPR, to request immediately for the correction or completion of incorrect or incomplete personal data of yours that has been stored by us;
    • According to Art. 17 of the GDPR, to request the deletion of your personal data that has been stored by us, so long as the processing is not required for the exercise of the right to free expression, for the fulfillment of a legal obligation, for reasons of public interest or for the assertion, exercise or defense of legal claims;
    • According to Art. 18 of the GDPR, to request limitations to the processing of your data, so long as the accuracy of the data is contested, the processing is unlawful, you decline deletion and we no longer require the data but you, however, need them for the assertion, exercise or defense of legal claims or you have filed an objection against the processing, as according to Art. 21 of the GDPR;
    • According to Art. 20 of the GDPR, to receive your personal data from us in a structured, conventional and machine-readable format or to request this to be transferred to a representative
    • According to Art. 77 of the GDPR, to lodge a complaint with a regulatory authority. To do this you can generally turn to the regulatory authorities that have jurisdiction where you live, where you work or where our company is located
  9. Right to Objection

    So long as your personal data is processed on the legal basis of legitimate interests, as according to Art. 6 Para. 1 Sent. 1 lit. f) of the GDPR, you reserve the right, as according to Art. 21 of the GDPR, to file an objection to the processing of your personal data if there are legal reasons resulting from your particular situation or if your objection is against direct advertising. In the last instance, you have a general right to objection that can be exercised even without having a particular legal situation with us.

    If you would like to make use of your right to objection, an e-mail toprivacy@productz.comwill suffice.

  10. Data Security

    During the ordering process we employ the widespread TLS practices (Transport Layer Security) in conjunction with the highest level of encryption supported by your browser. This generally involves 256-bit encryption. In the event that your browser does not support 256-bit encryption, we instead revert to the 128-bit v3 technology. To see whether an individual page of our website features encryption, check for a key or castle-shaped icon in the status bar of your browser.

    We also make use of other technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss or damage, and to protect against the unauthorized access of third parties. Our security measures are continually updated according to current technological developments.

  11. Version and Changes of This Privacy Policy

    This privacy policy is currently valid and is dated March 2018.

    On account of the continuous development of our website and services or due to changes in legal or regulatory provisions, this privacy policy is subject to change. The current version of the privacy policy can always be found at our website under

    https://www.productz.com/privacy-policy

    where it can be retrieved and printed.