logo
accountcart
Bestelle VERSANDKOSTENFREI und tauche in die Welt von
1001 SMILES

Privacy Policy

Data Protection Declaration

As of: April 5, 2025

Table of Contents

Controller

If you have any questions regarding the collection, processing, or use of your personal data, or if you wish to request information, correction, blocking, or deletion of data, or revoke any previously given consent, you may contact us via email or postal mail using the following contact details:

1001 SMILES – V.A.D.P.O.
Via Vincenzo Statella 75
96100 Syracuse
Italy

Contact
E-mail address:hallo@1001smiles.de

Responsible party within the meaning of the GDPR:
Vivien Arleta Di Pietro Ognissanti
Address as above
Impressum: https://1001smiles.de/impressum/

Overview of Processing Activities

The following overview summarizes the types of data processed and the purposes of their processing, and refers to the data subjects concerned.

Types of data processed

Categories of data subjects

Purposes of processing

Applicable Legal Bases

Applicable Legal Bases according to the GDPR: Below is an overview of the legal bases under the GDPR on which we process personal data. Please note that, in addition to the provisions of the GDPR, national data protection regulations may apply in your country or our country of residence or establishment. If, in specific cases, more specific legal bases are applicable, we will inform you of these in the privacy policy.

National data protection regulations in Germany: In addition to the data protection provisions of the GDPR, national data protection regulations apply in Germany. This includes, in particular, the Federal Data Protection Act (Bundesdatenschutzgesetz – BDSG), which contains specific provisions regarding the right of access, the right to erasure, the right to object, the processing of special categories of personal data, processing for other purposes, data transfer, and automated decision-making, including profiling. Additionally, state-level data protection laws of the individual federal states may also apply.

National data protection regulations in Austria: In addition to the data protection provisions of the GDPR, national data protection regulations apply in Austria. This includes, in particular, the Federal Act on the Protection of Natural Persons in the Processing of Personal Data (Data Protection Act – DSG). The Data Protection Act contains specific provisions regarding the right of access, the right to rectification or erasure, the processing of special categories of personal data, processing for other purposes, data transfer, and automated decision-making in individual cases.

Relevant legal bases under the Swiss Data Protection Act: Wenn Sie sich in der Schweiz befinden, bearbeiten wir Ihre Daten auf Grundlage des Bundesgesetzes über den Datenschutz (kurz „Schweizer DSG“). Dies gilt auch, wenn unsere Bearbeitung Ihrer Daten Sie sonst in der Schweiz betrifft und Sie von der Bearbeitung betroffen sind. Das Schweizer DSG sieht grundsätzlich nicht vor (anders als beispielsweise die DSGVO), dass eine Rechtsgrundlage für die Bearbeitung der Personendaten genannt werden muss. Wir bearbeiten Personendaten nur dann, wenn die Bearbeitung rechtmäßig ist, nach Treu und Glauben durchgeführt wird und verhältnismäßig ist (Art. 6 Abs. 1 und 2 des Schweizer DSG). Ferner werden Personendaten von uns nur zu einem bestimmten und für die betroffene Person erkennbaren Zwecken beschafft und nur so bearbeitet, dass es mit diesen Zwecken vereinbar ist (Art. 6 Abs. 3 des Schweizer DSG).

Reference to the validity of GDPR and Swiss DSG: Diese Datenschutzhinweise dienen sowohl der Informationserteilung nach dem schweizerischen Bundesgesetz über den Datenschutz (Schweizer DSG) als auch nach der Datenschutzgrundverordnung (DSGVO). Aus diesem Grund bitten wir Sie zu beachten, dass aufgrund der breiteren räumlichen Anwendung und Verständlichkeit die Begriffe der DSGVO verwendet werden. Insbesondere statt der im Schweizer DSG verwendeten Begriffe „Bearbeitung“ von „Personendaten“, „überwiegendes Interesse“ und „besonders schützenswerte Personendaten“ werden die in der DSGVO verwendeten Begriffe „Verarbeitung“ von „personenbezogenen Daten“ sowie „berechtigtes Interesse“ und „besondere Kategorien von Daten“ verwendet. Die gesetzliche Bedeutung der Begriffe wird jedoch im Rahmen der Geltung des Schweizer DSG weiterhin nach dem Schweizer DSG bestimmt.

Security Measures

In accordance with legal requirements and taking into account the state of technology, implementation costs, and the nature, scope, circumstances, and purposes of processing, as well as the varying likelihood and extent of threats to the rights and freedoms of natural persons, we implement appropriate technical and organizational measures to ensure a level of protection that is commensurate with the risk.

The measures include, in particular, ensuring the confidentiality, integrity, and availability of data by controlling both physical and electronic access to the data, as well as access, input, disclosure, ensuring availability, and separation of the data. Additionally, we have established procedures that ensure the exercise of data subject rights, data deletion, and responses to data threats. Furthermore, we consider the protection of personal data during the development or selection of hardware, software, and procedures in accordance with the principle of data protection through technical design and data protection-friendly default settings.

Transmission of Personal Data

As part of our processing of personal data, there are instances where the data is transferred or disclosed to other entities, companies, legally independent organizational units, or individuals. Recipients of this data may include, for example, service providers tasked with IT-related duties or providers of services and content embedded in a website. In such cases, we comply with legal requirements and, in particular, enter into appropriate contracts or agreements with the recipients of your data to ensure the protection of your data.

International data transfers

Data processing in third countries: If we process data in a third country (i.e., outside the European Union (EU) or the European Economic Area (EEA)) or if the processing occurs as part of using third-party services or the disclosure or transfer of data to other individuals, entities, or companies, this will only be done in compliance with legal requirements. If the level of data protection in the third country has been recognized by an adequacy decision (Art. 45 GDPR), this serves as the basis for the data transfer. Otherwise, data transfers will only take place if the level of data protection is secured by other means, particularly through standard contractual clauses (Art. 46 para. 2 letter c) GDPR), explicit consent, or in the case of contractual or legally required transfers (Art. 49 para. 1 GDPR). Furthermore, we will inform you of the basis for data transfers to third countries with the individual third-party providers, with adequacy decisions being prioritized as the basis. Information about third-country transfers and existing adequacy decisions can be found in the EU Commission's informational offerings: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de.

EU-US Trans-Atlantic Data Privacy Framework: Im Rahmen des sogenannten „Data Privacy Framework“ (DPF) hat die EU-Kommission das Datenschutzniveau ebenfalls für bestimmte Unternehmen aus den USA im Rahmen der Angemessenheitsbeschlusses vom 10.07.2023 als sicher anerkannt. Die Liste der zertifizierten Unternehmen als auch weitere Informationen zu dem DPF können Sie der Webseite des Handelsministeriums der USA unter https://www.dataprivacyframework.gov/ (in English) can be found. We will inform you, within the privacy notice, which of the service providers we use are certified under the Data Privacy Framework.

Disclosure of personal data abroad: According to the Swiss Data Protection Act (DSG), we disclose personal data abroad only if an adequate level of protection for the data subjects is ensured (Art. 16 Swiss DSG). If the Federal Council has not determined an adequate level of protection (list: https://www.bj.admin.ch/bj/de/home/staat/datenschutz/internationales/anerkennung-staaten.html), we take alternative security measures. These may include international agreements, specific guarantees, data protection clauses in contracts, standard data protection clauses approved by the Federal Data Protection and Information Commissioner (FDPIC), or company-specific data protection regulations that have been pre-approved by the FDPIC or the competent data protection authority of another country.

According to Art. 16 of the Swiss Data Protection Act (DSG), exceptions for the disclosure of data abroad may be permitted if certain conditions are met, including the consent of the data subject, contract performance, public interest, protection of life or physical integrity, publicly available data, or data from a legally established register. Such disclosures always take place in compliance with legal requirements.

Deletion of data

The data we process will be deleted in accordance with legal requirements as soon as the consents granted for processing are revoked or other authorizations expire (e.g., when the purpose of processing these data no longer exists or they are no longer required for that purpose). If the data is not deleted because it is required for other legally permissible purposes, its processing will be limited to those purposes. This means that the data will be blocked and not processed for other purposes. This applies, for example, to data that must be stored for commercial or tax reasons or whose storage is necessary for the assertion, exercise, or defense of legal claims, or to protect the rights of another natural or legal person. Our privacy policy may also contain further information regarding the retention and deletion of data that apply primarily to the respective processing activities.

Rights of Data Subjects

Rights of Data Subjects under the GDPR: As data subjects, you have various rights under the GDPR, which are primarily derived from Articles 15 to 21 of the GDPR:

Use of cookies

Cookies are small text files or other storage notes that store information on end devices and retrieve information from those devices. For example, they can store login status in a user account, shopping cart contents in an e-shop, the accessed content, or features used on an online service. Cookies can also be used for various purposes, such as ensuring the functionality, security, and convenience of online services, as well as for analyzing visitor traffic.

Notes on consent: We use cookies in accordance with legal regulations. Therefore, we obtain prior consent from users, unless this is not legally required. Consent is not necessary, in particular, when storing and retrieving information, including cookies, is absolutely necessary to provide the telemedia service explicitly requested by the users (i.e., our online service). Necessary cookies generally include those that support the display and functionality of the online service, load balancing, security, storing user preferences and choices, or similar purposes related to providing the main and ancillary functions of the online service requested by the users. The revocable consent is clearly communicated to users and includes information about the specific cookie usage.

Information on data protection legal bases: The legal basis for processing users' personal data using cookies depends on whether we ask for consent. If users consent, the legal basis for processing their data is the stated consent. Otherwise, the data processed using cookies will be based on our legitimate interests (e.g., in the operational management of our online service and improving its usability) or, if this is necessary for the fulfillment of our contractual obligations, when the use of cookies is required to meet those obligations. We will inform users about the purposes for which cookies are processed in this privacy policy or during our consent and processing processes.

Storage period: With regard to the retention period, the following types of cookies are distinguished:

Allgemeine Hinweise zum Widerruf und Widerspruch (sog. „Opt-Out“): Users can withdraw their consent at any time and object to the processing in accordance with legal requirements. To do so, users can, among other things, limit the use of cookies in their browser settings (although this may restrict the functionality of our online offering). An objection to the use of cookies for online marketing purposes can also be made through the websites https://optout.aboutads.info and https://www.youronlinechoices.com/ be explained.

Further information on processing procedures, methods and services:

Business services

Wir verarbeiten Daten unserer Vertrags- und Geschäftspartner, z. B. Kunden und Interessenten (zusammenfassend bezeichnet als „Vertragspartner“) im Rahmen von vertraglichen und vergleichbaren Rechtsverhältnissen sowie damit verbundenen Maßnahmen und im Rahmen der Kommunikation mit den Vertragspartnern (oder vorvertraglich), z. B., um Anfragen zu beantworten.

We process this data in order to fulfill our contractual obligations. This includes, in particular, the obligation to provide the agreed services, any necessary updates, and remedies in the event of warranty claims or other service disruptions. Furthermore, we process the data to protect our rights and for purposes related to administrative tasks and business organization associated with these obligations. We also process the data on the basis of our legitimate interests in the proper and economically efficient operation of our business and in implementing security measures to protect our contractual partners and business operations from misuse, threats to their data, trade secrets, information, and rights (e.g. by involving telecommunications, transport and other auxiliary services, subcontractors, banks, tax and legal advisors, payment service providers, or tax authorities). In accordance with applicable laws, we only disclose data of contractual partners to third parties to the extent necessary for the aforementioned purposes or to comply with legal obligations. Contractual partners will be informed within this privacy policy about any further types of data processing, such as for marketing purposes.

We inform our contractual partners about which data is required for the aforementioned purposes before or during the data collection process—e.g., via online forms, by using specific markings (such as colors) or symbols (such as asterisks), or in person.

We delete the data after the expiration of statutory warranty and comparable obligations, generally after four years, unless the data is stored in a customer account, for example, due to legal archiving requirements. The statutory retention period is ten years for documents relevant under tax law, such as accounting books, inventories, opening balances, annual financial statements, and the organizational documents and instructions required to understand these records, as well as accounting receipts. For received commercial and business correspondence and copies of sent commercial and business correspondence, the retention period is six years. The period begins at the end of the calendar year in which the last entry was made in the records, the inventory, opening balance, annual financial statement, or management report was prepared, the commercial or business letter was received or sent, the accounting document was created, or the recording was made, or the other document was generated.

To the extent that we use third-party providers or platforms to deliver our services, the terms of service and privacy notices of the respective third-party providers or platforms apply in the relationship between the users and the providers.

Further information on processing procedures, methods and services:

Use of Online Platforms for Offering and Sales Purposes

We offer our services on online platforms operated by other service providers. In this context, in addition to our privacy policy, the privacy policies of the respective platforms apply. This is especially true regarding the payment process and the procedures used on the platforms for reach measurement and interest-based marketing.

Providers and Services Used in the Course of Business Operations

Im Rahmen unserer Geschäftstätigkeit nutzen wir unter Beachtung der gesetzlichen Vorgaben zusätzliche Dienste, Plattformen, Schnittstellen oder Plug-ins von Drittanbietern (kurz „Dienste“). Deren Nutzung beruht auf unseren Interessen an einer ordnungsgemäßen, rechtmäßigen und funktionellen Darstellung unseres Angbots.

Payment procedure

Im Rahmen von Vertrags- und sonstigen Rechtsbeziehungen, aufgrund gesetzlicher Pflichten oder sonst auf Grundlage unserer berechtigten Interessen bieten wir den betroffenen Personen effiziente und sichere Zahlungsmöglichkeiten an und setzen hierzu neben Banken und Kreditinstituten weitere Dienstleister ein (zusammenfassend „Zahlungsdienstleister“).

The data processed by the payment service providers include inventory data such as name and address, banking data such as account numbers or credit card numbers, passwords, TANs, and checksums, as well as contract, amount, and recipient-related information. This information is necessary to complete the transactions. However, the entered data is only processed and stored by the payment service providers. This means that we do not receive account or credit card-related information, but only information confirming or rejecting the payment. In some cases, the data may be transmitted by the payment service providers to credit reporting agencies. This transmission aims to perform identity and credit checks. For this, we refer to the terms and conditions and privacy notices of the payment service providers.

The terms and conditions and privacy notices of the respective payment service providers apply to payment transactions, which can be accessed within the respective websites or transaction applications. We also refer to these for further information and for the exercise of rights such as withdrawal, access, and other rights of the data subjects.

Further information on processing procedures, methods and services:

Provision of the Online Offer and Web Hosting

We process the users' data in order to provide them with our online services. For this purpose, we process the user's IP address, which is necessary to deliver the content and functions of our online services to the users' browser or device.

Further information on processing procedures, methods and services:

Registration, login and user account

Users can create a user account. As part of the registration process, users will be informed of the required mandatory fields, and their data will be processed for the purpose of providing the user account based on contractual obligation. The processed data includes, in particular, login information (username, password, and an email address).

As part of using our registration and login functions, as well as utilizing the user account, we store the IP address and the time of each user action. The storage is based on our legitimate interests, as well as the users' interest in protection from abuse and unauthorized use. These data will generally not be shared with third parties unless necessary for the enforcement of our claims or if there is a legal obligation to do so.

Users may be informed by email about events relevant to their user account, such as technical changes.

Further information on processing procedures, methods and services:

Community features

The community features we provide allow users to engage in conversations or otherwise interact with each other. Please note that the use of these community features is only permitted in compliance with applicable laws, our terms and guidelines, as well as the rights of other users and third parties.

Further information on processing procedures, methods and services:

Blogs and publication media

Wir nutzen Blogs oder vergleichbare Mittel der Onlinekommunikation und Publikation (nachfolgend „Publikationsmedium“). Die Daten der Leser werden für die Zwecke des Publikationsmediums nur insoweit verarbeitet, als es für dessen Darstellung und die Kommunikation zwischen Autoren und Lesern oder aus Gründen der Sicherheit erforderlich ist. Im Übrigen verweisen wir auf die Informationen zur Verarbeitung der Besucher unseres Publikationsmediums im Rahmen dieser Datenschutzhinweise.

Further information on processing procedures, methods and services:

Push notifications

Mit der Zustimmung der Nutzer, können wir den Nutzern so genannte „Push-Benachrichtigungen“ zusenden. Dabei handelt es sich um Nachrichten, die auf den Bildschirmen, Endgeräten oder in Browsern der Nutzer angezeigt werden, auch wenn unser Onlinedienst gerade nicht aktiv genutzt wird.

Um sich für die Push-Nachrichten anzumelden, müssen Nutzer die Abfrage ihres Browsers bzw. Endgerätes zum Erhalt der Push-Nachrichten bestätigen. Dieser Zustimmungsprozess wird dokumentiert und gespeichert. Die Speicherung ist erforderlich, um zu erkennen, ob Nutzer dem Empfang der Push-Nachrichten zugestimmt haben sowie um die Zustimmung nachweisen zu können. Zu diesen Zwecken wird ein pseudonymer Identifikator des Browsers (sog. „Push-Token“) oder die Geräte-ID eines Endgerätes gespeichert.

Push notifications may be required for the fulfillment of contractual obligations (e.g., technical and organizational information relevant to the use of our online services) and, on the other hand, may be purely informational in nature.

Newsletters and electronic notifications

Wir versenden Newsletter, E-Mails und weitere elektronische Benachrichtigungen (nachfolgend „Newsletter“) nur mit der Einwilligung der Empfänger oder einer gesetzlichen Erlaubnis. Sofern im Rahmen einer Anmeldung zum Newsletter dessen Inhalte konkret umschrieben werden, sind sie für die Einwilligung der Nutzer maßgeblich. Im Übrigen enthalten unsere Newsletter Informationen zu unseren Leistungen und uns.

To subscribe to our newsletters, it is generally sufficient to provide your email address. However, we may ask you to provide a name for personalized addressing in the newsletter or additional information if required for the purposes of the newsletter.

Double-Opt-In-Verfahren: The subscription to our newsletter is carried out using a so-called double-opt-in procedure. This means that after subscribing, you will receive an email asking you to confirm your subscription. This confirmation is necessary to ensure that no one can subscribe with someone else's email address. The newsletter subscriptions are logged to be able to verify the registration process according to legal requirements. This includes storing the time of registration and confirmation, as well as the IP address. Any changes to the data stored with the mailing service provider are also logged.

Deletion and restriction of processing: Wir können die ausgetragenen E-Mail-Adressen bis zu drei Jahren auf Grundlage unserer berechtigten Interessen speichern, bevor wir sie löschen, um eine ehemals gegebene Einwilligung nachweisen zu können. Die Verarbeitung dieser Daten wird auf den Zweck einer möglichen Abwehr von Ansprüchen beschränkt. Ein individueller Löschungsantrag ist jederzeit möglich, sofern zugleich das ehemalige Bestehen einer Einwilligung bestätigt wird. Im Fall von Pflichten zur dauerhaften Beachtung von Widersprüchen behalten wir uns die Speicherung der E-Mail-Adresse alleine zu diesem Zweck in einer Sperrliste (sogenannte „Blocklist“) vor.

The logging of the registration process is carried out based on our legitimate interests for the purpose of proving its proper execution. If we commission a service provider for email dispatch, this is done based on our legitimate interests in an efficient and secure delivery system.

Contents:

Information about us, our services, promotions and offers.

Further information on processing procedures, methods and services:

Advertising communication via email, post, fax or telephone

We process personal data for the purposes of advertising communication, which can be carried out via various channels, such as email, telephone, mail or fax, in accordance with legal requirements.

Recipients have the right to withdraw consent at any time or to object to promotional communications at any time.

After a withdrawal of consent or an objection, we retain the data required to prove prior authorization for contacting or sending communications for up to three years after the end of the year in which the withdrawal or objection occurred, based on our legitimate interests. The processing of this data is limited to the purpose of a possible defense against claims. Additionally, based on our legitimate interest in permanently respecting the withdrawal or objection, we store the data necessary to prevent further contact (e.g., depending on the communication channel, the email address, phone number, or name).

Sweepstakes and competitions

We process the personal data of participants in contests and sweepstakes in compliance with applicable data protection regulations, insofar as the processing is necessary for the provision, execution, and handling of the contest as contractually required, the participants have given their consent, or the processing serves our legitimate interests (e.g., ensuring the security of the contest or protecting our interests against abuse, such as by collecting IP addresses when contest entries are submitted).

If participant entries are published as part of the contest (e.g., as part of a vote, presentation of contest entries or winners, or coverage of the contest), we point out that the names of the participants may also be published in this context. Participants may object to this at any time.

Findet das Gewinnspiel innerhalb einer Online-Plattform oder eines sozialen Netzwerks (z. B. Facebook oder Instagram, nachfolgend bezeichnet als „Online-Plattform“) statt, gelten zusätzlich die Nutzungs- und Datenschutzbestimmungen der jeweiligen Plattformen. In diesen Fällen weisen wir darauf hin, dass wir für die im Rahmen des Gewinnspiels mitgeteilten Angaben der Teilnehmer verantwortlich sind und Anfragen im Hinblick auf das Gewinnspiel an uns zu richten sind.

Participant data will be deleted once the contest or competition has ended and the data is no longer required to inform the winners or because no further inquiries regarding the contest are expected. As a rule, participant data will be deleted no later than 6 months after the end of the contest. Data of the winners may be retained for a longer period, for example, to respond to inquiries about the prizes or to fulfill the prize deliveries; in such cases, the retention period depends on the nature of the prize and may be up to three years for physical items or services, for example, in order to handle warranty claims. In addition, participant data may be stored for a longer period in the context of contest-related reporting in online and offline media.

If data is collected for other purposes in the context of the contest, its processing and retention period are governed by the data protection information provided for that specific use (e.g., in the case of a newsletter subscription as part of the contest).

Surveys and polls

Wir führen Umfragen und Befragungen durch, um Informationen für den jeweils kommunizierten Umfrage- bzw. Befragungszweck, zu sammeln. Die von uns durchgeführten Umfragen und Befragungen (nachfolgend „Befragungen“) werden anonym ausgewertet. Eine Verarbeitung personenbezogener Daten erfolgt nur insoweit, als dies zu Bereitstellung und technischen Durchführung der Umfragen erforderlich ist (z. B. Verarbeitung der IP-Adresse, um die Umfrage im Browser des Nutzers darzustellen oder mithilfe eines Cookies eine Wiederaufnahme der Umfrage zu ermöglichen).

Web analysis, monitoring and optimization

Die Webanalyse (auch als „Reichweitenmessung“ bezeichnet) dient der Auswertung der Besucherströme unseres Onlineangebotes und kann Verhalten, Interessen oder demographische Informationen zu den Besuchern, wie z. B. das Alter oder das Geschlecht, als pseudonyme Werte umfassen. Mit Hilfe der Reichweitenanalyse können wir z. B. erkennen, zu welcher Zeit unser Onlineangebot oder dessen Funktionen oder Inhalte am häufigsten genutzt werden oder zur Wiederverwendung einladen. Ebenso können wir nachvollziehen, welche Bereiche der Optimierung bedürfen.

In addition to web analytics, we may also use testing procedures to, for example, test and optimize different versions of our online offering or its components.

Unless otherwise stated below, profiles may be created for these purposes – i.e. data combined into a usage process – and information may be stored in or read from a browser or device. The collected data may include, in particular, visited websites and elements used on them, as well as technical details such as the browser used, the operating system, and information about usage times. If users have consented to the collection of their location data by us or by providers of services we use, location data may also be processed.

Users’ IP addresses are also stored. However, we use an IP masking method (i.e. pseudonymization by shortening the IP address) to protect users. In general, no plain user data (such as email addresses or names) is stored during web analysis, A/B testing, or optimization processes. Instead, pseudonyms are used. This means that neither we nor the providers of the software used know the actual identity of the users—only the information stored in their profiles for the respective purposes.

Further information on processing procedures, methods and services:

Onlinemarketing

Wir verarbeiten personenbezogene Daten zu Zwecken des Onlinemarketings, worunter insbesondere die Vermarktung von Werbeflächen oder Darstellung von werbenden und sonstigen Inhalten (zusammenfassend als „Inhalte“ bezeichnet) anhand potentieller Interessen der Nutzer sowie die Messung ihrer Effektivität fallen kann.

Zu diesen Zwecken werden sogenannte Nutzerprofile angelegt und in einer Datei (sogenanntes „Cookie“) gespeichert oder es werden ähnliche Verfahren genutzt, mittels derer die für die Darstellung der vorgenannten Inhalte relevante Angaben zum Nutzer gespeichert werden. Zu diesen Angaben können z. B. betrachtete Inhalte, besuchte Webseiten, genutzte Onlinenetzwerke, aber auch Kommunikationspartner und technische Angaben, wie der verwendete Browser, das verwendete Computersystem sowie Angaben zu Nutzungszeiten und genutzten Funktionen gehören. Sofern Nutzer in die Erhebung ihrer Standortdaten eingewilligt haben, können auch diese verarbeitet werden.

For these purposes, so-called user profiles are created and stored in a file (known as a "cookie") or similar technologies are used to store information relevant to the presentation of the aforementioned content. This information may include, for example, viewed content, visited websites, used online networks, communication partners, as well as technical details such as the browser used, the operating system, usage times, and utilized features. If users have consented to the collection of their location data, this data may also be processed.

The information in the profiles is generally stored in cookies or by using similar technologies. These cookies can later also be read on other websites that use the same online marketing technology, analyzed for the purpose of content display, supplemented with additional data, and stored on the server of the online marketing technology provider.

In exceptional cases, personal data may be associated with the profiles. This can occur, for example, if users are members of a social network that we use for online marketing and the network links the users' profiles with the aforementioned information. Please note that users may enter into additional agreements with the providers, such as giving consent during the registration process.

As a rule, we only receive access to aggregated information regarding the success of our advertisements. However, within the scope of so-called conversion tracking, we can determine which of our online marketing methods have led to a conversion, e.g., the conclusion of a contract with us. Conversion tracking is used solely to analyze the effectiveness of our marketing efforts.

Unless otherwise specified, please assume that the cookies used will be stored for a period of two years.

Affiliate programs and affiliate links

In unser Onlineangebot binden wir sogenannte Affiliate-Links oder andere Verweise (zu denen z. B. Suchmasken, Widgets oder Rabatt-Codes gehören können) auf die Angebote und Leistungen von Drittanbietern ein (zusammenfassend bezeichnet als „Affiliate-Links“). Wenn Nutzer den Affiliate-Links folgen, bzw. anschließend die Angebote wahrnehmen, können wir von diesen Drittanbietern eine Provision oder sonstige Vorteile erhalten (zusammenfassend bezeichnet als „Provision“).

In order to track whether users have taken advantage of the offers from an affiliate link we use, it is necessary for the respective third-party providers to know that the users have followed an affiliate link included in our online offering. The attribution of affiliate links to the respective transactions or other actions (e.g., purchases) serves solely the purpose of commission billing and will be removed once it is no longer required for this purpose.

For the purposes of the aforementioned attribution of affiliate links, the affiliate links may be supplemented with certain values that are part of the link or may otherwise be stored, for example, in a cookie. These values may include, in particular, the referring website (referrer), the time, an online identifier of the website operator where the affiliate link was located, an online identifier of the respective offer, the type of link used, the type of offer, and an online identifier of the user.

Notes on legal basis: If we ask users for their consent to use third-party providers, the legal basis for processing data is consent. Otherwise, the users' data is processed based on our legitimate interests (i.e., interest in efficient, cost-effective, and user-friendly services). In this context, we also want to point out the information regarding the use of cookies in this privacy policy.

Customer reviews and rating processes

We participate in review and rating procedures to evaluate, optimize, and promote our services. When users rate us or provide feedback via the respective review platforms or procedures, the terms and conditions and privacy policies of those providers also apply. In most cases, submitting a review requires registration with the respective provider.

To ensure that the individuals providing reviews have actually used our services, we transmit the necessary data regarding the customer and the service used to the respective review platform, with the customer's consent (including name, email address, and order number or item number). This data is used solely to verify the authenticity of the user.

Further information on processing procedures, methods and services:

Presences in social networks (social media)

We maintain online presences within social networks and, in this context, process user data in order to communicate with users active on these platforms or to provide information about us.

We point out that user data may be processed outside the European Union. This may pose certain risks for users, for example, it could make it more difficult to enforce their rights.

Furthermore, user data within social networks is generally processed for market research and advertising purposes. For example, usage profiles can be created based on user behavior and resulting interests. These profiles can in turn be used to display advertisements—both within and outside of the networks—that are presumably aligned with users’ interests. For these purposes, cookies are typically stored on users’ devices, in which their usage behavior and interests are recorded. Additionally, data may also be stored in the usage profiles regardless of the devices used by the users (especially if the users are members of the respective platforms and are logged in).

For a detailed overview of the respective forms of data processing and options for objection (opt-out), we refer to the privacy policies and information provided by the operators of the respective networks.

Also in the case of information requests and the exercise of data subject rights, we point out that these are most effectively addressed to the providers themselves. Only the providers have access to the users' data and can take appropriate action and provide information directly. However, if you still require assistance, you may contact us.

Further information on processing procedures, methods and services:

Plugins and embedded functions and content

Wir binden in unser Onlineangebot Funktions- und Inhaltselemente ein, die von den Servern ihrer jeweiligen Anbieter (nachfolgend bezeichnet als „Drittanbieter“) bezogen werden. Dabei kann es sich zum Beispiel um Grafiken, Videos oder Stadtpläne handeln (nachfolgend einheitlich bezeichnet als „Inhalte“).

Die Einbindung setzt immer voraus, dass die Drittanbieter dieser Inhalte die IP-Adresse der Nutzer verarbeiten, da sie ohne die IP-Adresse die Inhalte nicht an deren Browser senden könnten. Die IP-Adresse ist damit für die Darstellung dieser Inhalte oder Funktionen erforderlich. Wir bemühen uns, nur solche Inhalte zu verwenden, deren jeweilige Anbieter die IP-Adresse lediglich zur Auslieferung der Inhalte verwenden. Drittanbieter können ferner sogenannte Pixel-Tags (unsichtbare Grafiken, auch als „Web Beacons“ bezeichnet) für statistische oder Marketingzwecke verwenden. Durch die „Pixel-Tags“ können Informationen, wie der Besucherverkehr auf den Seiten dieser Webseite, ausgewertet werden. Die pseudonymen Informationen können ferner in Cookies auf dem Gerät der Nutzer gespeichert werden und unter anderem technische Informationen zum Browser und zum Betriebssystem, zu verweisenden Webseiten, zur Besuchszeit sowie weitere Angaben zur Nutzung unseres Onlineangebotes enthalten als auch mit solchen Informationen aus anderen Quellen verbunden werden.

Further information on processing procedures, methods and services:

Management, organization and support tools

Wir setzen Dienstleistungen, Plattformen und Software anderer Anbieter (nachfolgend bezeichnet als „Drittanbieter“) zu Zwecken der Organisation, Verwaltung, Planung sowie Erbringung unserer Leistungen ein. Bei der Auswahl der Drittanbieter und ihrer Leistungen beachten wir die gesetzlichen Vorgaben.

In this context, personal data may be processed and stored on the servers of third-party providers. This may include various types of data that we process in accordance with this privacy policy. Such data may particularly include personal details and contact information of users, data related to transactions, contracts, other processes, and their contents.

If users are referred to third-party providers or their software or platforms as part of communication, business, or other relationships with us, the third-party providers may process usage data and metadata for security purposes, service optimization, or marketing purposes. We therefore encourage users to review the privacy notices of the respective third-party providers.

Changes and updates to the privacy policy

We kindly ask you to regularly review the content of our privacy policy. We update the privacy policy whenever changes in our data processing activities make this necessary. We will inform you if such changes require any action on your part (e.g., consent) or other individual notification.

If we provide addresses and contact information of companies and organizations in this privacy policy, please note that these addresses may change over time. We therefore ask you to verify the information before making contact.

Definitions of terms

In this section, you will find an overview of the terms used in this privacy policy. Where terms are legally defined, their legal definitions apply. The following explanations are primarily intended to aid understanding.

Erstellt mit kostenlosem Datenschutz-Generator.de von Dr. Thomas Schwenke

Die Inhalte sind urheberrechtlich geschützt

en_USEnglish
de_DEGerman en_USEnglish
Copyright © 2025 by 1001 SMILES