Unfortunately, these subjects sound rather technical due to their nature, but we have put much effort into describing the most important things as simply and clearly as possible.
Storage of Personal Data Any personal data you electronically submit to us on this website, such as your name, email address, home address or other personal information you provide via the transmission of a form or via any comments to the blog, are solely used for the specified purpose and get stored securely along with the respective submission times and IP-address. These data do not get passed on to third parties.
Therefore, we use personal data for the communication with only those users, who have explicitly requested being contacted, as well as for the execution of the services and products offered on this website. We do not pass your personal data to others without your approval, but we cannot exclude the possibility this data will be looked at in case of illegal conduct.
If you send us personal data via email – and thus not via this website – we cannot guarantee any safe transmission or protection of your data. We recommend you, to never send confidential data via email.
Rights in accordance with the General Data Protection Regulation You are granted the following rights in accordance with the provisions of the GDPR (General Data Protection Regulation) and the Austrian Data Protection Act (DSG):
right to rectification (article 16 GDPR)
right to erasure (“right to be forgotten“) (article 17 GDPR)
right to restrict processing (article 18 GDPR)
righ to notification – notification obligation regarding rectification or erasure of personal data or restriction of processing (article 19 GDPR)
right to data portability (article 20 GDPR)
Right to object (article 21 GDPR)
right not to be subject to a decision based solely on automated processing – including profiling – (article 22 GDPR)
If you think that the processing of your data violates the data protection law, or that your data protection rights have been infringed in any other way, you can lodge a complaint with your respective regulatory authority. For Austria this is the data protection authority, whose website you can access at https://www.data-protection-authority.gv.at/.
To use Google Fonts, you must log in and set up a password. Furthermore, no cookies will be saved in your browser. The data (CSS, Fonts) will be requested via the Google domains fonts.googleapis.com and fonts.gstatic.com. According to Google, all requests for CSS and fonts are fully separated from any other Google services. If you have a Google account, you do not need to worry that your Google account details are transmitted to Google while you use Google Fonts. Google records the use of CSS (Cascading Style Sheets) as well as the utilised fonts and stores these data securely. We will have a detailed look at how exactly the data storage works.
What are Google Fonts? Google Fonts (previously Google Web Fonts) is a list of over 800 fonts which href=”https://en.wikipedia.org/wiki/Google?tid=111597582”>Google LLC provides its users for free.
Many of these fonts have been published under the SIL Open Font License license, while others have been published under the Apache license. Both are free software licenses.
Why do we use Google Fonts on our website? With Google Fonts we can use different fonts on our website and do not have to upload them to our own server. Google Fonts is an important element which helps to keep the quality of our website high. All Google fonts are automatically optimised for the web, which saves data volume and is an advantage especially for the use of mobile terminal devices. When you use our website, the low data size provides fast loading times. Moreover, Google Fonts are secure Web Fonts. Various image synthesis systems (rendering) can lead to errors in different browsers, operating systems and mobile terminal devices. These errors could optically distort parts of texts or entire websites. Due to the fast Content Delivery Network (CDN) there are no cross-platform issues with Google Fonts. All common browsers (Google Chrome, Mozilla Firefox, Apple Safari, Opera) are supported by Google Fonts, and it reliably operates on most modern mobile operating systems, including Android 2.2+ and iOS 4.2+ (iPhone, iPad, iPod). We also use Google Fonts for presenting our entire online service as pleasantly and as uniformly as possible.
Which data is saved by Google? Whenever you visit our website, the fonts are reloaded by a Google server. Through this external cue, data gets transferred to Google’s servers. Therefore, this makes Google recognise that you (or your IP-address) is visiting our website. The Google Fonts API was developed to reduce the usage, storage and gathering of end user data to the minimum needed for the proper depiction of fonts. What is more, API stands for „Application Programming Interface“ and works as a software data intermediary.
Google Fonts stores CSS and font requests safely with Google, and therefore it is protected. Using its collected usage figures, Google can determine how popular the individual fonts are. Google publishes the results on internal analysis pages, such as Google Analytics. Moreover, Google also utilises data of ist own web crawler, in order to determine which websites are using Google fonts. This data is published in Google Fonts’ BigQuery database. Enterpreneurs and developers use Google’s webservice BigQuery to be able to inspect and move big volumes of data.
One more thing that should be considered, is that every request for Google Fonts automatically transmits information such as language preferences, IP address, browser version, as well as the browser’s screen resolution and name to Google’s servers. It cannot be clearly identified if this data is saved, as Google has not directly declared it.
How long and where is the data stored? Google saves requests for CSS assets for one day in a tag on their servers, which are primarily located outside of the EU. This makes it possible for us to use the fonts by means of a Google stylesheet. With the help of a stylesheet, e.g. designs or fonts of a website can get changed swiftly and easily.
Any font related data is stored with Google for one year. This is because Google’s aim is to fundamentally boost websites’ loading times. With millions of websites referring to the same fonts, they are buffered after the first visit and instantly reappear on any other websites that are visited thereafter. Sometimes Google updates font files to either reduce the data sizes, increase the language coverage or to improve the design.
How can I delete my data or prevent it being stored? The data Google stores for either a day or a year cannot be deleted easily. Upon opening the page this data is automatically transmitted to Google. In order to clear the data ahead of time, you have to contact Google’s support at https://support.google.com/?hl=en-GB&tid=111597582. The only way for you to prevent the retention of your data is by not visiting our website.
Unlike other web fonts, Google offers us unrestricted access to all its fonts. Thus, we have a vast sea of font types at our disposal, which helps us to get the most out of our website. You can find out more answers and information on Google Fonts at https://developers.google.com/fonts/faq?tid=111597582. While Google does address relevant elements on data protection at this link, it does not contain any detailed information on data retention.It proofs rather difficult to receive any precise information on stored data by Google.
What is Google Analytics? Google Analytics is a tracking tool with the purpose of conducting data traffic analysis of our website. For Google Analytics to work, there is a tracking code integrated to our website. Upon your visit to our website, this code records various actions you perform on your website. As soon as you leave our website, this data is sent to the Google Analytics server, where it is stored.
Google processes this data and we then receive reports on your user behaviour. These reports can be one of the following:
Target audience reports: With the help of target audience reports we can get to know our users better and can therefore better understand who is interested in our service.
Advertising reports: Through advertising reports we can analyse our online advertising better and hence improve it.
Acquisition reports: Acquisition reports provide us helpful information on how we can get more people enthusiastic about our service.
Behaviour reports: With these reports, we can find out how you interact with our website. By the means of behaviour reports, we can understand what path you go on our website and what links you click.
Conversion reports: A conversion is the process of leading you to carry out a desired action due to a marketing message. An example of this would be transforming you from a mere website visitor into a buyer or a newsletter subscriber. Hence, with the help of these reports we can see in more detail, if our marketing measures are successful with you. Our aim is to increase our conversion rate.
Real time reports: With the help of these reports we can see in real time, what happens on our website. It makes us for example see, we can see how many users are reading this text right now.
Why do we use Google Analytics on our website? The objective of our website is clear: We want to offer you the best possible service. Google Analytics’ statistics and data help us with reaching this goal.
Statistically evaluated data give us a clear picture of the strengths and weaknesses of our website. On the one hand, we can optimise our page in a way, that makes it easier to be found by interested people on Google. On the other hand, the data helps us to get a better understanding of you as our visitor. Therefore, we can very accurately find out what we must improve on our website, in order to offer you the best possible service. The analysis of that data also enables us to carry out our advertising and marketing measures in a more individual and more cost-effective way. After all, it only makes sense to show our products and services exclusively to people who are interested in them.
What data gets stored by Google Analytics? With the aid of a tracking code, Google Analytics creates a random, unique ID which is connected to your browser cookie. That way, Google Analytics recognises you as a new user. The next time you visit our site, you will be recognised as a “recurring” user. All data that is collected gets saved together with this very user ID. Only this is how it is made possible for us to evaluate and analyse pseudonymous user profiles.
Your interactions on our website are measures by tags such as cookies and app instance IDs. Interactions are all kinds of actions that you perform on our website. If you are also using other Google systems (such as a Google Account), data generated by Google Analytics can be linked with third-party cookies. Google does not pass on any Google Analytics data, unless we as the website owners authorise it. In case it is required by law, exceptions can occur.
The following cookies are used by Google Analytics: Name: _ga Value:2.1326744211.152111597582-5 Purpose: By deafault, analytics.js uses the cookie _ga, to save the user ID. It generally serves the purpose of differenciating between website visitors. Expiration date: After 2 years
Name: _gid Value:2.1687193234.152111597582-1 Purpose: This cookie also serves the purpose of differentiating between website users Expiration date: After 24 hours
Name: _gat_gtag_UA_ Value: 1 Purpose: It is used for decreasing the demand rate. If Google Analytics is provided via Google Tag Manager, this cookie gets the name _dc_gtm_ . Expiration date: After 1 minute
Name: AMP_TOKEN Value: No information Purpose: This cookie has a token which is used to retrieve the user ID by the AMP Client ID Service. Other possible values suggest a logoff, a request or an error. Expiration date: After 30 seconds up to one year
Name: __utmaValue:1564498958.1564498958.1564498958.1 Purpose: With this cookie your behaviour on the website can be tracked and the site performance can be measured. The cookie is updated every time the information is sent to Google Analytics. Expiration date: After 2 years
Name: __utmtValue: 1 Purpose: Just like _gat_gtag_UA_ this cookie is used for keeping the requirement rate in check. Expiration date: Afer 10 minutes
Name: __utmbValue:3.10.1564498958 Purpose: This cookie is used to determine new sessions. It is updated every time new data or information gets sent to Google Analytics. Expiration date: After 30 minutes
Name: __utmc Value: 167421564 Purpose: This cookie is used to determine new sessions for recurring visitors. It is therefore a session cookie, and only stays saved until you close the browser again. Expiration date: After closing the browser
Name: __utmz Value: m|utmccn=(referral)|utmcmd=referral|utmcct=/ Purpose: This cookie is used to identify the source of our website’s visitor number. This means, that the cookie saves information on where you came to our website from. This could be another site or an advertisement. Expiration date: After 6 months
Name: __utmv Value: No information Purpose: The cookie is used to store custom user data. It gets updated whenever information is sent to Google Analytics. Expiration date: After 2 years
Note: This list is by no means exhaustive, since Google are repeatedly changing the use of their cookies.
Below we will give you an overview of the most important data that can be evaluated by Google Analytics:
Heatmaps: Google creates so-called Heatmaps an. These Heatmaps make it possible to see the exact areas you click on, so we can get information on what routes you make on our website.
Session duration: Google calls the time you spend on our website without leaving it session duration. Whenever you are inactive for 20 minutes, the session ends automatically.
Bounce rate If you only look at one page of our website and then leave our website again, it is called a bounce.
Account creation: If you create an account or make an order on our website, Google Analytics collects this data.
IP-Address: The IP address is only shown in a shortened form, to make it impossible to clearly allocate it.
Location: Your approximate location and the country you are in can be defined by the IP address. This process is called IP location determination.
Technical information: Information about your browser type, your internet provider and your screen resolution are called technical information.
Source: Both, Google Analytics as well as ourselves, are interested what website or what advertisement led you to our site.
Further possibly stored data includes contact data, potential reviews, playing media (e.g. when you play a video on our site), sharing of contents via social media or adding our site to your favourites. This list is not exhaustive and only serves as general guidance on Google Analytics’ data retention.
Your data is allocated to various physical data mediums. This has the advantage of allowing to retrieve the data faster, and of protecting it better from manipulation. Every Google data centre has respective emergency programs for your data. Hence, in case of a hardware failure at Google or a server error due to natural disasters, the risk for a service interruption stays relatively low.
Google Analytics has a 26 months standardised period of retaining your user data. After this time, your user data is deleted. However, we have the possibility to choose the retention period of user data ourselves. There are the following five options:
Deletion after 14 months
Deletion after 26 months
Deletion after 38 months
Deletion after 50 months
No automatical deletion
As soon as the chosen period is expired, the data is deleted once a month. This retention period applies to any of your data which is linked to cookies, user identification and advertisement IDs (e.g. cookies of the DoubleClick domain). Any report results are based on aggregated information and are stored independently of any user data. Aggregated information is a merge of individual data into a single and bigger unit.
Should you generally want to deactivate, delete or manage all cookies (independently of Google Analytics), you can use one of the guides that are available for any browser:
We exclusively want to show our products or services to persons, who are interested in them. With the aid of the Facebook pixel, our advertising measures can get better adjusted to your wishes and interests. Therefore, Facebook users get to see suitable advertisement (if they allowed personalised advertisement). Moreover, Facebook uses the collected data for analytical purposes and for its own advertisements.
In the following we will show you the cookies, which were set on a test page through the integration of the Facebook pixel. Please consider that these cookies are only examples. Depending on the interaction that is made on our website, different cookies are set.
Name: _fbp Value: fb.1.1568287647279.257405483-6111597582-7 Purpose: Dieses Cookie verwendet Facebook, um Werbeprodukte anzuzeigen. Expiration date: nach 3 Monaten
Name: fr Value: 0aPf312HOS5Pboo2r..Bdeiuf…1.0.Bdeiuf. Purpose: Dieses Cookie wird verwendet, damit Facebook-Pixel auch ordentlich funktioniert. Expiration date: nach 3 Monaten
Name: comment_author_50ae8267e2bdf1253ec1a5769f48e062111597582-3 Value: Name of the author
Purpose: This cookie saves the text and name of a user who e.g. leaves a comment.
Expiration date: after 12 months
Value: https%3A%2F%2Fwww.testseite…%2F (URL of the author)
Purpose: This cookie saved the URL of the website that the user types into a text box on our website.
Expiration date: after 12 months
Name: comment_author_email_50ae8267e2bdf1253ec1a5769f48e062 Value: email address of the author
Purpose: This cookie saves the email address of the user, if they provided it on the website.
Expiration date: after 12 months
Note: The above-mentioned cookies relate to an individual user behaviour. Moreover, especially concerning the usage of cookies, changes at Facebook can never be ruled out.
If you are registered at Facebook, you can change the settings for advertisements yourself at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. If you are not a Facebook user, you can manage your user based online advertising at https://www.youronlinechoices.com/uk/your-ad-choices. You have the option to activate or deactivate any providers there.
If you want to learn more about Facebook’s data protection, we recommend you the view the company’s in-house data policies at https://www.facebook.com/policy.php.
What is WP Statistics? This plugin is an analysis software which was specially developed for websites that use the WordPress content management system. WordPress helps us to easily edit our website even without any programming knowledge. WP Statistics may for example collect data about how long you stay on our website, what subpages you visit, how many visitors are on our website or which website led you to us. Furthermore, WP Statistics does not set any cookies and you cannot be personally identified by the collected data.
Why do we use WP Statistics?
With the help of WP Statistics, we obtain simple statistics that help us to continuously improve and make our website even more interesting for you. Our website and the content, products and/or services offered on it should meet your needs and demands as closely as possible. In order to achieve this goal, we of course have to find out where there is room for improvements and changes. The statistics obtained help us to get one step closer to this goal.
Which data is stored by WP Statistics?
WP Statistics does not set any cookies and the collected data are only used to generate anonymised statistics on the use of our website. WP Statistics also anonymises your IP address. You cannot be identified as a person.
WP Statistics collects visitor data when your web browser connects to our web server. These data are then stored in our server’s database. The retained data may for example be:
the address (URL) of the accessed website
browser and browser version
the operating system used
the address (URL) of the previously visited page (referrer URL)
the hostname and IP address of the device from which our website was accessed
date and time
information on the country/city
number of visitors that come from a search engine
duration of the website stay
clicks on the website
Your data will not be passed on or sold.
How long and where are the data stored? All data is retained locally on our web server. Your data will be stored on our web server until it is no longer needed for the purposes listed above.
How can I delete my data or prevent data retention? You have the right to information, rectification, deletion or restriction of the processing of your personal data at any time. Moreover, you can revoke your consent to the data processing anytime.
If you unsubscribe from the newsletter – for which you can find a link in the bottom of every newsletter – we will delete all data that was saved when you registered for the newsletter.
What is MailChimp? MailChimp is a cloud-based newsletter management service. “Cloud-based“ means that we do not need to install MailChimp on our own computer or server. Instead, we use the service on an external server, or more specifically via an IT infrastructure, which is available via the internet. Using a software this way is also called SaaS (software as a service).
MailChimp allows us to chose from a wide range of different email types. Depending on what goal we want to reach with our newsletter, we can run individual campaigns, regular campaigns, auto responders (automated emails), A/B tests, RSS campaigns (mailings at pre-set times and frequencies) and follow-up campaigns.
Why do we use MailChimp on our website? The reason we would use any newsletter service is so we can stay in contact with you. We want to keep you on the loop what news or attractive offers we have for you at the time. As we constantly seek out the easiest and best solutions for our marketing measures, we have decided on MailChimp as our newsletter management service. While the software is very easy to use, it offers many helpful features. For example, it allows us to create interesting and attractive newsletters in only a short time. With integrated design templates we can create every newsletter in an individual way. Due to the “responsive design” feature, our contents are also presented in a readable and pleasant way on your smartphone (or any other mobile device).
With tools such as A/B testing or the extensive analysis options, we can swiftly tell how you like our newsletters. This means that we can react if necessary and improve our offer or our services.
Another advantage is MailChimp’s “cloud system”. The data is not stored and processed directly on our server. We can retrieve the datafrom external servers and therefore save our memory space and also decrease maintenance effort.
What data is saved by MailChimp? Rocket Science Group LLC (MailChimp) operate online platforms which enable us to get in contact with you, provided you subscribed to our newsletter. If you become a subscriber of our newsletter via our website, by email you agree to become a member of a MailChimp email list. Then, MailChimp saves your subscription data and your IP address, so it can verify your entry into the list provider. Moreover, MailChimp stores your email address, your name, your physical address and demographic information, such as language or location.
This information is used to send emails to you and to allow certain other MailChimp functions (e.g. the evaluation of newsletters).
MailChimp also shares information with third parties to improve its services. Moreover, MailChimp shares certain data with advertising partners of third parties to get a better understanding of its clients’ interests, in order to provide relevant contents and target-oriented advertising.
With so-called “web beacons” (small graphics in HTML emails), MailChimp can determine if an email has arrived, has been opened or if links have been clicked. This information is then stored on MailChimp’s servers. That way we receive statistical evaluations and can see how you liked our newsletter. Therefore, we can tailor our offer better to your wishes and improve our service.
Moreover, MailChimp are allowed to use this data for improving their own service. Thus, they can for example technically optimise the distribution or determine the location (or the country) of the recipient.
The following cookies can be set by MailChimp. The list is not exhaustive and is merely an exemplary selection:
Name: AVESTA_ENVIRONMENT Value: Prod Purpose: This cookie is necessary to provide the services of Mailchimp. It is always set when a user registers for a newsletter mailing list. Expiry date: at the end of the session
Name: ak_bmsc Value: F1766FA98C9BB9DE4A39F70A9E5EEAB55F6517348A7000001111597582-3 Purpose: The cookie is used to differentiate a human from a bot. That way secure reports on the use of a website can be created. Expiry date: after 2 hours
Name: bm_sv Value: A5A322305B4401C2451FC22FFF547486~FEsKGvX8eovCwTeFTzb8//I3ak2Au… Purpose: This cookie comes from MasterPass Digital Wallet (a MasterCard service) and is used to offer a secure and easy virtual payment process to visitors. For this purpose, the user is anonymously identified on the website. Expiry date: after 2 hours
Name: _abck Value: 8D545C8CCA4C3A50579014C449B045111597582-9 Purpose: We could not find any further information about the purpose of this cookie. Expiry date: after one year
How long and where is the data saved? Since MailChimp is an American company, all retained data is stored on American servers.
Generally, the data stays permanently saved on MailChimp’s servers and is deleted only when you request it. You can have your contact information with us deleted. This permanently removes all your personal data for us and anonymises you in MailChimp’s reports. However, you can also request the deletion of your data permanently at MailChimp. Then all your data are removed from there and we receive a notification from MailChimp. After we receive the email we have 30 days to delete your contact from all integrations.
How can I delete my data or prevent data retention? You can withdraw your approval for the receipt of our newsletters anytime, by clicking the link in the lower area of the received newsletter email. When you click on the unsubscribe link, your data with MailChimp gets deleted.
When you land on a MailChimp website via a link in our newsletter and cookies are consequently set in your browser, you can delete or deactivate these cookies anytime.
Depending on the browser, the deactivation or deletion differs slightly. The following instructions show how to manage cookies in your browser:
If you generally do not want to allow any cookies, you can set up your browser in a way so it would notify you whenever a potential cookie is about to be set. This lets you decide upon the placement of every single cookie.
Which data are stored by the AdSimple Cookie Manager? If you agree to cookies on our website, AdSimple Cookie Manager will set the following cookie:
Name: acm_status Value: “:true,”statistics”:true,”marketing”:true,”socialmedia”:true,”settings”:true} Porpose: This cookie saves the status of your consent. This enables our website to read and adhere to the latest status, even during future visits. Expiry date: after one year
How long and where are the data stored? All data collected by the AdSimple Cookie Manager is transferred and stored exclusively within the European Union. The collected data is stored on the AdSimple servers at Hetzner GmbH in Germany. Therefore, only AdSimple GmbH and Hetzner GmbH have access to the data.
We hope we were able to provide you with a good overview of data traffic and data processing by AdSimple Cookie Manager. If you want to learn more about this tool, we recommend the description page at https://www.adsimple.at/adsimple-cookie-manager/.
What is Google Custom Search? Google’s Custom Search plug-in is a Google search bar that is integrated directly into our website. With it, searches take place just like on www.google.com, but the search results focus on our content and products or a limited area.
Why do we use Google Custom Search on our website? A website with much interesting content often grows so big that it is easy to lose track. Over time, lots of valuable material has accumulated also on our site. But as part of our service we want you to be able to find our content in a quick and simple manner. Therefore, we have integrated Google Custom Search, which makes finding interesting content a breeze. Moreover, the built-in Google plug-in improves our website’s overall quality and makes searches easier for you.
What data does Google Custom Search store? The customised Google search only transfers your data to Google, if you actively use the Google search function that is integrated to our website. This means that only when you type a search term in the search bar and click on “Search” or “Enter”, the search term is sent to Google along with your IP address, where they are stored and processed. Based on the placed cookies (such as 1P_JAR), Google may also receive data on website use. If you search for content via the built-in Google search function on our website, while you are logged into your Google account, Google can assign the collected data to your Google account. As the website operator, we have no influence on what Google do with the collected data or how Google process this data.
The following cookies are set in your browser if you use Google Custom Search and are not logged into a Google account:
Name: 1P_JAR Value: 2020-01-27-13111597582-5 Purpose: This cookie collects website usage statistics and measures conversions. A conversion occurs e.g. when a user becomes a buyer. The cookie is also used to display relevant ads to users. Expiry date: after one month
Purpose: The cookie stores the status of a user’s consent to the use of various Google services. CONSENT also protects user data from unauthorised attacks.
Expiry date: after 18 years
Purpose: NID is used by Google to adapt ads to your Google search. With the help of cookies, Google “remembers” your search queries and your previous interaction with ads. That way you always receive customised advertisements.
Expiry date: after 6 months
Note: We do not claim for this list to be exhaustive, Google keep changing the choice of their cookies.
How long and where is the data stored? Google’s servers are located all over the world. Since Google is an American company, most data is stored on American servers. At https://www.google.com/about/datacenters/inside/locations/?hl=en you can find out where exactly Google’s servers are.Your data is distributed across various physical data carriers. This means the data can be accessed quicker and is better protected against potential manipulation. Google also have special emergency programs for your data. In case e.g. internal technical problems occur and some servers would stop working, the risk of an interruption of service and data loss remains low.Google store data for different lengths of time, depending on what type of data they are. You can delete some data yourself, while others are automatically deleted or anonymised by Google. However, Google stores certain data for longer if it is necessary for legal or business reasons.
How can I delete my data or prevent data retention? According to the European Union’s data protection regulations, you have the right to access information about your data as well as to update, delete or to restrict it. There are certain data which you can delete anytime. If you have a Google account, you can delete data about your web activity there, or set it to be deleted after a specified period. In your browser you can also deactivate, delete or manage cookies according to your wishes and preferences. Here are instructions for the most popular browsers:
What is WooCommerce? WooCommerce is an online shop system that has been part of the WordPress directory since 2011 and was specially developed for WordPress websites. It is a customisable, open source eCommerce platform that is based on WordPress. It has been integrated into our website as a WordPress plugin.
Why do we use WooCommerce on our website? We use this practical online shop system, to be able to offer you our physical or digital products or services in the best possible way on our website. The aim is to give you easy and easy access to our offer, so that you can quickly and easily navigate to the products you want. With WooCommerce we have found a good plugin that meets our requirements for an online shop.
What data is stored by WooCommerce? Information that you actively enter to a text field in our online shop can be collected and stored by WooCommerce or Automattic. Hence, if you register with us or order a product, Automattic may collect, process and save this data. In addition to email address, name or address, this can also be your credit card or billing information. Subsequently, Automattic can also use this information for their own marketing campaigns.
There is also evidence that Automattic automatically collects information on you in so-called server log files:
Pre-set language settings
Date and time of the web access
Moreover, WooCommerce sets cookies in your browser and uses technologies such as pixel tags (web beacons), to for example clearly identify you as a user and to be able to offer interest-based advertising. WooCommerce uses several different cookies, which are placed depending on the user action. This means that if you for example add a product to the shopping cart, a cookie is set so that the product remains in the shopping cart when you leave our website and come back later.
Below we want to show you an example list of possible cookies that may be set by WooCommerce:
Name: woocommerce_items_in_cart Value: 1 Purpose:This cookie helps WooCommerce to determine when the contents of the shopping cart change. Expiry date: after end of session
Name: woocommerce_cart_hashValue: 447c84f810834056ab37cfe5ed27f204111597582-7 Purpose:This cookie is also used to recognise and save the changes in your shopping cart. Expiry date: after end of session
Name: wp_woocommerce_session_d9e29d251cf8a108a6482d9fe2ef34b6 Value: 1146%7C%7C1589034207%7C%7C95f8053ce0cea135bbce671043e740111597582-4aa Purpose:This cookie contains a unique identifier for you to allow the shopping cart data to be found in the database. Expiry date: after 2 days
How long and where is the data stored? Unless there is a legal obligation to keep data for a longer period, WooCommerce will delete your data if it is no longer needed for the purposes it was saved for. Server log files for example, the technical data for your browser and your IP address will be deleted after about 30 days. This is how long Automattic use the data to analyse the traffic on their own websites (for example all WordPress websites) and to fix possible problems. The data is stored on Automattic’s American servers.
How can I delete my data and prevent data retention? You have the right to access your personal data anytime, as well as to object to it being used and processed. You can also lodge a complaint with a state supervisory authority anytime.
You can also manage, delete or deactivate cookies individually in your browser. However, please note that deactivated or deleted cookies may have a negative impact on the functions of our WooCommerce online shop. Depending on the browser you use, managing cookies differs slightly. Below you will find links to the instructions for the most common browsers:
What is Stripe? The technology company Stripe offers payment solutions for online payments. Stripe enables us to accept credit and debit card payments in our webshop while it handles the entire payment process. A major advantage of Stripe is that you never have to leave our website or shop during the payment process. Moreover, payments are processed very quickly via Stripe.
Why do we use Stripe on our website? We of course want to offer the best possible service with both our website and our integrated online shop. After all, we would like you to feel comfortable on our site and take advantage of our offers. We know that your time is valuable and therefore, payment processing in particular must work quickly and smoothly. In addition to our other payment providers, with Stripe we have found a partner that guarantees secure and fast payment processing.
What data are stored by Stripe? If you choose Stripe as your payment method, your personal data (transaction data) will be transmitted to Stripe where it will be stored. These data include the payment method (i.e. credit card, debit card or account number), bank sort code, currency, as well as the amount and the payment date. During a transaction, your name, email address, billing or shipping address and sometimes your transaction history may also be transmitted. These data are necessary for authentication. Furthermore, Stripe may also collect relevant data for the purpose of fraud prevention, financial reporting and for providing its services in full. These data may include your name, address, telephone number as well as your country in addition to technical data about your device (such as your IP address).
Name: m Value: edd716e9-d28b-46f7-8a55-e05f1779e84e040456111597582-5 Purpose: This cookie appears when you select your payment method. It saves and recognises whether you are accessing our website via a PC, tablet or smartphone. Expiry date: after 2 years
Name: __stripe_mid Value: fc30f52c-b006-4722-af61-a7419a5b8819875de9111597582-1 Purpose: This cookie is required for carrying out credit card transactions. For this purpose, the cookie stores your session ID. Expiry date: after one year
Name: __stripe_sid Value: 6fee719a-c67c-4ed2-b583-6a9a50895b122753fe Purpose: This cookie also stores your ID. Stripe uses it for the payment process on our website. Expiry date: after end of the session
How long and where are the data stored? Generally, personal data are stored for the duration of the provided service. This means that the data will be stored until we terminate our cooperation with Stripe. However, in order to meet legal and official obligations, Stripe may also store personal data for longer than the duration of the provided service. Furthermore, since Stripe is a global company, your data may be stored in any of the countries Stripe offers its services in. Therefore, your data may be stored outside your country, such as in the USA for example.
How can I delete my data or prevent data retention? Stripe is still a participant of the EU-U.S. Privacy Shield Framework which regulated correct and secure transfer of personal data until July 16, 2020. However, since the European Court of Justice declared the agreement to be invalid, the company no longer relies on this agreement, but still acts according to the principles of Privacy Shield.
You can delete, deactivate or manage cookies in your browser that Stripe uses for its functions. This works differently depending on which browser you are using. Please note, however, that if you do so the payment process may no longer work. The following instructions will show you how to manage cookies in your browser: