Responsible Authority
We are happy about your visit to our website. We would like to introduce ourselves
as the responsible authority within the meaning of data protection law:
CAPE Cosmetics
Sole proprietor Maike Thumel
Kohlenhofstr. 60
90443 Nürnberg
Phone: +4991199009981
E-mail: hello@cape-cosmetics.com
General Information
Pursuant to our statutory obligations, we would like to inform you about the collection
and use of your personal data.
When you use our website, personal data about you will be collected. This may
happen by you entering the data yourself, for example your e-mail address. But our
system also collects your data automatically, for example whenever you visit our
website. This happens irrespective of the device or the software that you use to visit
our website.
All data that you enter in our app is provided voluntarily; there are no disadvantages
to you if you do not provide data. But without certain data, we are unable to provide
services or to conclude contracts. Whenever such information is necessary, we will
point it out to you.
On this website, the user’s personal data is only collected within the framework of the
existing data-protection law, in particular the General Data Protection Regulation
(GDPR). The legal terms used in the text are defined in Art. 4 of the GDPR.
The GDPR allows data processing in three cases in particular:
in accordance with Art. 6 para. 1 (a) and 7 GDPR, when you have consented
to us processing your data; in this Privacy Policy and in the cases of consent
pursuant to Art. 4 no. 11 GDPR, we will inform you in detail and each time for
what purposes and under what circumstances your data will be processed by
us;
in accordance with Art. 6 para. 1 (b) GDPR, when processing your personal
data is necessary for negotiating, concluding or performing a contract;
in accordance with Art. 6 para. 1 (f) GDPR, if the balancing of interests leads
to the conclusion that the processing is necessary to protect our legitimate
interests; this means in particular our interests to analyse, optimise and secure
the offers on our website – meaning primarily the analysis of user behaviour,
setting up profiles for advertisement purposes and storage of access data as
well as the use of third-party providers.
Inventory Data
ACHTUNG diese Übersetzung ist noch in Arbeit. bitte frage sie per E-Mail bei uns
an: mail@easyrechtssicher.de
Usage Data
ACHTUNG diese Übersetzung ist noch in Arbeit. bitte frage sie per E-Mail bei uns
an: mail@easyrechtssicher.de
ACHTUNG diese Übersetzung ist noch in Arbeit. bitte frage sie per E-Mail bei uns
an: mail@easyrechtssicher.de
Consent
Whenever we ask you for your consent for the processing of your data, we will inform
you in clear language and in an easily accessible way about the cases for which you
will be granting your consent. Any consent that we ask you for is voluntary. Any
advantage that you wish to gain by granting consent is also available without
consent; simply ask us.
Regarding any consent, you have the right to revoke any consent given to us for the
processing of your personal data at any time. You just need to contact us without any
particular formal requirement, for example through our contact form, an e-mail to the
e-mail address indicated in the “About Us” section or a link to unsubscribe (if offered
by us). Your withdrawal has no effect on the legality of the data processing carried
out up to that point.
Storage Period
ACHTUNG diese Übersetzung ist noch in Arbeit. bitte frage sie per E-Mail bei uns
an: mail@easyrechtssicher.de
Cookies
Cookie Opt-In
ACHTUNG diese Übersetzung ist noch in Arbeit. Bitte frage sie per E-Mail bei uns
an: mail@easyrechtssicher.de
Users‘ Rights
You may request us anytime to provide information about the personal data stored
about you free of charge. To avoid misuse, this will require personal identification.
Deletion, Correction, Limitation
You may at any time demand from us that we correct (or complete) incorrect data as
well as a limitation of the processing of data or deletion of your data. This applies in
particular if the reason for processing the data is no longer valid, if a required consent
has been revoked and there is no other legal basis or if our data processing is
unlawful. We will then correct, block or even delete your personal data without delay
as far as permitted by law.
Objection
The right to object to advertisement is governed by our text regarding consent:
Regarding any consent, you have the right to revoke any consent given to us for the
processing of your personal data at any time. You just need to contact us without any
particular formal requirement, for example through our contact form, an e-mail to the
e-mail address indicated in the “About Us” section or a link to unsubscribe (if offered
by us). Your withdrawal has no effect on the legality of the data processing carried
out up to that point.
Data Transfer
You may request us to transfer the data stored about you in machine-readable form.
Complaint
If you feel that our data processing has violated any of your rights, you may file a
complaint with the competent regulatory agency (here you find a list of the agencies).
Changes to the Privacy Policy
If and when factual or legal reasons will compel us to amend the Privacy Policy, we
will update this page accordingly. This will not change the consent provided by the
user.
Data Entry
Encryption of Data Entry
When you enter data on our website, whether in a contact form, during the
registration process, when you log in or for payment purposes, the website, where
you enter the data, is encrypted. Thus, third parties can not read what you enter. You
will recognise the encryption by the lock symbol in your browser and by the URL
beginning with “https“ instead of “http“.
Contact Forms
General contact form
When you fill out a contact form or when you send us an e-mail or another electronic
message, your information will be stored for the processing of the request, for
possible follow-up questions or for other related questions and will only be used to
follow up with the request.
Your data will be transferred in an encrypted manner, preventing third parties from
reading your data while it is being entered.
Basis for this storage is your consent pursuant to Art. 6 para. 1 (a) GDPR, which you
grant us by filling in the contact form or by your other requests. You may revoke this
consent at any time, you just need to contact us without any particular formal
requirement (for example in the contact form or by e-mail). This withdrawal has no
effect on the legality of the data processing that has occurred up to that point.
Your data remains stored for as long as the processing of the request requires, in
particular as long as the storage is still necessary to perform the contract, to pursue
our rights or for our other legitimate interests or we are compelled by law to keep
your data stored (for example based on tax-law requirements to maintain files).
Newsletter
Mail Chimp
If you subscribe to the newsletter offered on our website, we will inform you in detail
about the information you will receive, which of your data will be stored and what it
will be used for. We will not pass on your data to third parties and we will only use it
to mail the newsletter.
We will only mail you the newsletter if you have given us your prior permission. To
that purpose, you will receive an e-mail from us with a link and further instructions
and our request for your consent. By clicking on this link, you declare your consent to
receiving the newsletter and our advertising.
Because we are legally obligated to record your permission as part of the so-called
double opt-in, your order of the newsletter, the mailing of our e-mail of consent and
your consent by clicking on the link will be recorded and saved with location and time
as well as with your IP address.
The basis for the storage is your consent pursuant to Art. 6 para. 1 (a) GDPR, which
you grant to us by registering for the newsletter. You may revoke this consent at any
time, you just need to contact us without any particular formal requirement (for
example through the contact form or an e-mail or the unsubscribe button in each e-
mail). This withdrawal has no effect on the legality of the data processing that has
occurred until that point.
For mailing the newsletter, we use (based on our legitimate interest in a
technologically perfect processing of our customer information and analysis) the
provider MailChimp (Rocket Science Group, LLC, 675 Ponce De Leon Ave NE
#5000, Atlanta, GA 30308, USA) from the USA.
This means, your data will be exportet to the USA, but MailChimp is registered with
Privacy Shield and must adhere to EU data protection rules.
In our newsletter, we will also explicitly ask you to provide your consent to
transferring data to MailChimp and to the USA. You will declare that consent by
clicking on the link, but you may revoke it at any time. For the handling of your data
at MailChimp, we refer you to the Privacy Policy of MailChimp
at: https://mailchimp.com/legal/privacy/.
MailChimp will only use your data for mailing the newsletter and for evaluating that
mailing on our behalf. In addition to that, MailChimp will only use your data to
improve their own service. But MailChimp will not use the data to contact you directly
or to pass on your data to third parties.
The data used by MailChimp contains a “web beacon“, which will inform MailChimp
about the opening of the newsletter and/or the clicking on a link contained therein by
you. As part of that process, information regarding your browser, your location and
your IP address will be transmitted to MailChimp. This information will be used to
optimise our communication with you.
Our newsletter provider will also use this data for purposes of analysis and
optimisation of their own service, but only in pseudonymised form (meaning that your
identification is not possible). But your data will not be used by the provider to contact
you directly.
Your data will remain stored for as long as you are stored in our mailing list, the
storage is required to enforce our rights or it is necessary for our legitimate interest or
we are required by law to keep your data.
Social Media
Social Media Links
General Information
We refer with links to our social media presences. When you follow any such link to
the social media site, your data will be broadcasted to that site. The social media site
will normally store a cookie in your browser and to your account information there,
especially, if you are logged into your social media account on the site. The social
media site can analyse your use of the platform and your browsing habits and will
use these for targeting advertisements based on your interests. That can lead to ads
being shown to you when browsing in- and outside of the social media site. Please
inform yourself about the use of your data on these sites and use them only, when
you agree to that use of your data, that happens on that social media site, in
particular, when you are not using that social media site for the first time. We have
added links to all the privacy policies of the social media site for your information.
Facebook
Our website uses links to our presence in the social network of Facebook by
Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA. It is just a normal
link. Thus, when you open our site, Facebook will not learn of your visit to our
website. But once you click on the link, you will be led to Facebook, allowing
Facebook to learn that you have visited out site.
That way, your data will be transferred to the USA, but Facebook is registered with
Privacy Shield and must adhere to the EU data protection rules.
The collection and use of your data which is possibly carried out by Facebook after
clicking on the link is beyond our knowledge or control. You may find further
information in Facebook’s privacy policy at http://de-de.facebook.com/policy.php.
Instagram
Our website uses links to our presence in the social network of Instagram by
Instagram LLC, now
Facebook Ireland Ltd.
4 Grand Canal Square
Grand Canal Harbour.
It is just a normal link. Thus, when you open our site, Instagram will not learn of your
visit to our website. But once you click on the link, you will be led to Instagram,
allowing Instagram / Facebook to learn that you have visited out site.
That way, your data will be transferred to the USA, but Instagram is registered with
Privacy Shield and must adhere to the EU data protection rules.
The collection and use of your data which is possibly carried out by
Instagram/Facebook after clicking on the link is beyond our knowledge or control.
You may find further information in Instagram’s privacy policy at
https://help.instagram.com/155833707900388.
Pinterest
Our page uses links to our presence on the social network Pinterest, provided by
Pinterest, Inc., 808 Brannan St, San Francisco, CA 94103, USA.
It is just a normal link, which means that upon opening our page, Pinterest won't
learn anything of your visit to our website. But when you click on the link, you will be
taken to Pinterest, and then Pinterest will also learn that you visited our page.
Thus, your data will be forwarded to the USA, but Pinterest is registered with Privacy
Shield and must adhere to EU data protection rules.
We have neither knowledge of, nor any influence on the possible collection and
processing of your data by Pinterest. Further information can be found in Pinterest'
privacy policy at https://policy.pinterest.com/privacy-policy.
Our Social Media Fan Page(s) – General Information
Beside our website, we also use fan page(s) on social media platforms. Above, we
have already informed you about the data processing on our website and we have in
particular made sure that the fact alone that you access our website is not yet
forwarded to the social media platform. Following the ECJ ruling dated 5 June 2018
about social media presences, we want to inform you about the data processing
during your visit to our social media fan page(s):
On the basis of our legitimate interest in a timely customer communication pursuant
to Art. 6 para. 1 (f) GDPR as well as for advertising and public relations purposes, we
present ourselves and our offers on social media fan page(s).
Our social media fan page(s) usually can be accessed online independently of you
having a user account with the relevant platform or not. But in either case, your data
will be processed by the social media platform.
Each time the social media platform is accessed, your IP address will be collected
and stored. Usually, a cookie will also be placed on your page, which will save your
visit and further data about your visit to the social media platform.
If you are logged in with the social media platform, your visit will also be spotted by a
cookie or through other technological means and will be attributed to your user
account. Thus, the social media platform is usually able to analyse your user
behaviour. In this process, a user profile with your interests is generated, which the
social media platform will use to provide you with a user experience tailored to your
interests, in particular advertisement tailored to your interests within and outside of
the social media platform – even across different devices, if applicable. Your data
may also be used for market research. For the details, we refer you to the following
privacy policies of the social media platform(s) used by us.
We can usually also use the data of the social media platform in order to allow you to
use our fan page in accordance with your interests or to approach you with
advertising.
When you interact with our fan page and if you are logged in with the relevant social
media platform, according to the social media page's terms of use, we can usually
also recognise your user profile and see your content.
If you do not want this, we point you to our explanations about cookies above, with
general information about cookies and their deactivation. There, we have laid out in
general terms how you can prevent or limit cookies being stored on your devices.
Further information about the respective social media platform can be found
hereinafter.
According to the aforementioned ECJ ruling dated 5 June 2018, we are always jointly
responsible for our social media fan page(s) together with the relevant social media
platform. This means that you may also exercise your general rights, which we have
listed in detail above under the heading “Users' Rights”, against us. To that purpose,
we refer you to our contact details at the beginning of this Privacy Policy. Please
keep in mind, though, that we have no conclusive knowledge of the exact scope of
the processing of your data by the social media platform and have even less
influence on it. Therefore, we kindly ask you to contact the relevant social media
platform in the first place regarding your rights.
We generally leave your data on the social media platform and do not import it onto
our server. But if that should occur, our general information regarding the storage
period will apply.
Further information about the processing of your data and the storage period on the
social media platform can be found in the respective privacy policy of the social
media platform, which we have listed hereinafter.
Facebook
We present ourselves on the social media platform Facebook.
Joint Responsibility
Facebook Ireland Ltd.
4 Grand Canal Square
Grand Canal Harbour
Dublin 2 Ireland
Contact
Contact Data Protection Officer
If you open our fan page on Facebook, your data will be forwarded to the USA, but
Facebook is registered with Privacy Shield and must adhere to EU data protection
rules.
Facebook has concluded an agreement with
us https://www.facebook.com/legal/terms/page_controller_addendum
about our shared responsibility for processing the data, in which it recognises its
primary responsibility and guarantees in particular that you can exercise your right to
information, as described in the general part. You may obtain more information from
Facebook's privacy policy at: http://de-de.facebook.com/policy.php.
Facebook also provides us with statistics as part of "Facebook Insights" for the
purpose of targeted advertising. These are created without our participation and then
provided to us. The data include information like interaction with our page, such as
likes, page activities, video views, reach of our posts, comments, sharing of content,
clicks on offers or further information on our fan page as well as statistical data about
those interacting, such as gender, origin by country, city and language. The same
applies to groups which we may manage.
When you are logged in, you can influence the processing of your data by Facebook
considerably and in different ways.
Here you can make changes to your timeline, i.e. what can be seen about you and
your
page: https://www.facebook.com/settings/?tab=timeline&privacy_source=timeline_ge
ar_menu .
And you can change your advertisement preferences
here: https://www.facebook.com/ads/preferences/?entry_product=ad_settings_scree
n.
Instagram
We have a presence on the social media platform Instagram. Instagram is now
owned by Facebook.
Jointly Responsible
Facebook Ireland Ltd.
4 Grand Canal Square
Grand Canal Harbour
Dublin 2 Ireland
Contact Data Protection Officer
If you open our profile on Instagram, your data will be forwarded to the USA, but
Facebook is registered with Privacy Shield and must adhere to EU data protection
rules.
We have neither knowledge of, nor any influence on the possible collection and
processing of your data by Facebook and Instagram. Further information can be
found in Instagram's privacy policy at https://help.instagram.com/519522125107875.
Instagram and Facebook also provide us with statistics as part of "Facebook
Insights" for the purpose of targeted advertising. These are created without our
participation and then provided to us. The data include information like interaction
with our page, such as likes, page activities, video views, reach of our posts,
comments, sharing of content, clicks on offers or further information on our fan page
as well as statistical data about those interacting, such as gender, origin by country,
city and language. The same applies to groups which we may manage.
When you are logged in, you can influence the processing of your data by Instagram
considerably and in different ways.
Your content, i.e. what is visible of you and your profile, can be changed
here: https://www.instagram.com/accounts/login/?next=/accounts/privacy_and_securi
ty/.
LinkedIn
We have a presence on the social media platform LinkedIn.
Jointly Responsible
LinkedIn Ireland Limited Company,
Wilton Place,
Dublin 2,
Ireland
Contact
If you open our profile on LinkedIn, your data may be forwarded to the USA, but
LinkedIn is registered with Privacy Shield and must adhere to EU data protection
rules.
We have neither knowledge of, nor any influence on the possible collection and
processing of your data by LinkedIn. Further information can be found in LinkedIn's
privacy policy at
https://www.LinkedIn.com/legal/privacy-policy.
LinkedIn also provides us with statistics. These are created without our participation
and then provided to us. The data will include interactions, for example, as well as
statistical data.
When you are logged in, you can influence the processing of your data by LinkedIn
considerably and in different ways.
For your privacy settings with LinkedIn, LinkedIn refers you to several options that
you can read about in their privacy policy.
The LinkedIn advertising cookie can be turned off here (opt-out):
https://www.LinkedIn.com/psettings/guest-controls/retargeting-opt-out
Pinterest
We have a presence on the social media platform Pinterest.
Jointly Responsible
Pinterest Europe Ltd.
Palmerston House 2nd Floor, Fenian Street, Dublin 2, Ireland Contact
Contact Data Protection Officer
If you open our channel with Pinterest, your data will be forwarded to the USA, but
Pinterest is registered with Privacy Shield and must adhere to EU data protection
rules.
We have neither knowledge of, nor any influence on the possible collection and
processing of your data by Pinterest. Further information can be found in Pinterest'
privacy policy at https://policy.pinterest.com/privacy-policy .
Pinterest also provides us with statistics. These are created without our participation
and then provided to us. The data will include interactions, for example, as well as
statistical data.
For your privacy settings with Pinterest, Pinterest refers you to its privacy policy with
different options listed under the heading “Choices you have about your info”.
Xing
We have a presence on the social media platform Xing.
Jointly Responsible
XING SE,
Dammtorstrasse 29-32,
20354 Hamburg,
Germany
Phone: +49 40 419 131-0,
Fax: +49 40 419 131-11,
E-mail: info@xing.com.
Data Protection Officer:
Felix Lasse,
Dammtorstrasse 30,
20354 Hamburg,
Germany,
E-mail: Data Protection Officer@xing.com
We have neither knowledge of, nor any influence on the possible collection and
processing of your data by Xing. Further information can be found in Xing's privacy
policy at
https://privacy.xing.com/de/datenschutzerklaerung.
Xing also provides us with statistics. These are created without our participation and
then provided to us. The data will include interactions, for example, as well as
statistical data.
For your privacy settings with Xing, Xing refers you to several options that you can
read about in their privacy policy.
This is our current valid privacy policy from 15.10.2019