Privacy Policy

Privacy Policy

Thank you for your interest in our company. The confidential treatment of your data is our highest priority. We therefore take the protection of your personal data very serious. In the following, we will give you information on how we ensure this protection and which kind of data will be required for which purpose.

In general, you can use our website without inputting any personal data.  If you wish to make use of our company's services via our website, it could be necessary for us to process your personal data.  Whenever it is necessary to process personal data, and no legal basis for such processing exists, we always ask for the consent of the person involved (the data subject).

The processing of personal data (e.g. the data subject's name, address, e-mail address or telephone number) always takes place in accordance with the General Data Protection Regulation (GDPR) and in adherence to country-specific data protection regulations that apply to us.

With the following privacy policy, we wish to inform the public of the nature, scope and purpose of the personal data we collect, use and process. Furthermore, this privacy policy informs data subjects of their rights.

As the controller responsible for the data processing, we have implemented numerous technical and organizational measures to ensure the highest level of protection possible for the personal data processed via our website. The transfer of data via the internet is, however, inherently subject to possible security gaps. As a result, it is impossible to guarantee 100% protection. Therefore, any data subject also has the alternative to transfer their personal data to us by other means (for example, by telephone).

 1. Definitions

This privacy policy is based on the definitions used in the GDPR as enacted by the European Commission (art. 4 of the GDPR). This privacy policy is intended to be easy for anyone to read and understand. To guarantee this, we would first like to explain to you the terms that are used. The following definitions, among others, are used in this privacy policy:

- 'personal data': All information referring to an identified or identifiable natural person (referred to as a 'data subject'); a natural person is considered identifiable whenever he or she can directly or indirectly be identified, especially by means of allocating an identifier like a name, identification number, location information, online identifier or other particular traits which express the physical, physiological, genetic, psychological, financial, cultural or social identity of this natural person;

- 'data subject': Any identified or identifiable natural person whose personal data are processed by the party responsible for the data processing. "Einschränkung der Verarbeitung" die Markierung gespeicherter personenbezogener Daten mit dem Ziel, ihre künftige Verarbeitung einzuschränken;

- 'restriction of processing': marking of stored personal data with the goal of restricting its processing in the future.

- 'profiling': any type of automated processing of personal data in which personal data are used to analyze specific personal aspects related to a natural person, particularly to analyze or predict aspects related to this natural person's job performance, financial situation, health, personal preferences, interests, creditworthiness, conduct, place of residence or change of location.

- 'controller': the natural or legal person, authority, institution or other body that decides itself or in collaboration with others about the purposes and means of processing personal data; if the purposes and means of this processing are regulated by collective labor law or the law of EU member states, then the controller can be subject to the specific criteria of its designation pursuant to collective labor law or the law of EU member states.

- 'Recipient': a natural or legal person, authority, institution or other body to which personal data are disclosed, regardless of whether they are a third party or not

- Authoritieswhich may receive personal data within the scope of an investigative procedure under collective labor law or the law of EU member states are, however, not considered recipients; the processing of these data by the authorities in question takes place in accordance with applicable data protection regulations with respect to the purposes of the processing;

- 'thirdparty': a natural or legal person, authority, institution or other body other than the data subject, the controller, the processor and the persons authorized under the direct control of the controller or processor to process the personal data;

- 'consent'of the data subject: any voluntary permission granted unequivocally and in an informed manner for the specific instance in the form of a declaration or other clear act of confirmation by which the data subject makes known that he or she agrees with the processing of his or her personal data.

2. Name and contact information of the controller and data protection officer

a. Controller

The controller as defined by Art. 4, Section 7 Data Protection Ordinance (“GDPR”) and other national data protection laws of the EU member states as well as other provisions under data protection law is:

heroyne UG
Torstraße 72
10119 Berlin
Germany

Managing Director: Francois Dubuisson

Phone: 0049 176 47638558
Mail: contact@heroyne.com
Website: www.heroyne.com

b. Data protection officer

The data protection officer of the controller is:

Francois Dubuisson
heroyne UG
Torstraße 72
10119 Berlin
Germany

Mail: contact@heroyne.com
Website: www.heroyne.com

3. Collection and storage of personal data and the nature and purpose of their use

a. When visiting our website

In general, you can use our website without disclosing your identity. When using our website purely for informational purposes (i.e. when you are not registered or do not provide us with any other information), the browser you are using on your end-device automatically sends information to our website's server. This information is stored temporarily in a so-called 'logfile'. The following information is collected in this way without any action on your part and is stored until automatically deleted:

- IP address of the requesting computer,

- Data and time of access,

- Name and URL of the file accessed,

- Website from which the access takes place (referrer URL),

- Browser being used and, in some cases, the operating system on your computer as well as the name of your internet service provider.

These data are processed by us for the following purposes:

- to ensure comfortable use of the website,

- to accept and process your orders,

- to send you our newsletter,

- if necessary, to answer questions from you,

- to analyze system security and stability, and

- for other administrative purposes.

The legal basis for this data processing is art. 6.1.1.f of the GDPR. Our legitimate interest is based on the data collection purposes listed above. At no time do we use the collected data for the purpose of tracing your personal identity.

Furthermore, we use cookies and analytics services whenever you visit our website. For more information about these, see sections 5 and 7 of this privacy policy.

b. Additional functions and services of our website

In addition to purely informational use of our website, we offer various services which you can use if you are interested. For this, you must, as a rule, provide further personal data which we use to provide the service in question and which are subject to the aforementioned principles of data processing.

We use the services of external parties for certain aspects of processing your data. These parties are carefully selected and contracted by us. They are bound to our instructions are monitored regularly.

Furthermore, we can transfer your personal data to third parties whenever promotional offers, sweepstakes, contracting or other services are provided by us in collaboration with partners. You receive more information about this when inputting your personal data or below in the description of our services.

If our service providers or partners are located in a country outside the European Economic Area (EEA), we inform you of the implications of this fact in the description of the service.

c. Objection or withdrawal of consent to processing your data

Once you have granted consent for your personal data to be processed, you can withdraw this at any time. After you have issued such a withdrawal to us, it influences the permissibility of the processing of your personal data.

If the processing of your personal data is based on a weighing of interests, you can issue an objection to the processing. This is the case in particular whenever the processing is not necessary for the fulfilment of a contract with you, which is made known to you in each of the following descriptions of functions. When you issue such an objection, we ask that you explain the reasons why we should not process your personal data. In case you have a justified objection, we will assess the situation and then either reconfigure and/or adjust the data processing or show you our mandatory, protected reasons for continuing the processing.

Of course, you can object at any time to the processing of your personal data for the purposes of advertising and data analysis. You can inform us of your objection to advertising using the following contact information:

Phone: 0049 176 47638558
Mail: contact@heroyne.com

d. Getting in touch

You can get in touch with our customer service for all questions relating to online orders, invoices or returns using our website. Personal information - such as your name, date of birth, email address and telephone number - is collected as part of getting in touch, insofar as this is needed to process your inquiry.  These data are only stored and used for the purpose of handling your concerns or for contacting us and the related, technical administration.  The legal basis for processing the data is, insofar as it concerns a service from which no contract arises, our legitimate interest in answering your request in accordance with Article  6 para 1 p. 1 lit.  f of the GDPR.  If you contact us with the purpose of concluding a contract, the additional legal basis for the processing is based on Article  6 para 1 p. 1 lit.  of the GDPR.  Your data are deleted after final processing of your request.  This is the case if it can be inferred from the circumstances that the matter in question has been conclusively clarified, there are no statutory retention obligations to the contrary and the data are not still required for fulfilling a contract or pre-contractual measures. 

 

e. When placing orders on our website

You can place orders via our website either as a guest (without registering) or by registering in our shop as a customer for future orders. The advantage of registering for you is that you can log in to our shop directly using your e-mail address and password whenever you wish to place an order in the future without having to enter all of your contact details again.

Your personal data are then entered into an input screen and transferred to us and stored. Whenever you place an order via our website, we collect the following data first, whether you are placing the order as a guest or registering in the shop:

- Title, first name, surname;
- a valid e-mail address;
- Address;
- Ordered goods;
- Specify which form of payment you are using;
- Telephone number (land line and/or mobile number.

 

These data shall be collected

- to identify you as our customer;
- to process, fulfil and handle your order;
- for correspondence with you;
- for invoicing;
- to settle liability claims if any, as well as the enforcement of claims if any against you; to settle liability claims if any, as well as the enforcement of claims ifany against you;
- to ensure the technical administration of our website;
- for the administration of our customer data.

In connection with the ordering process, we will obtain your consent for the processing of this data.

The data for your order and/or your registration shall be processed, and as per Section 6 (1)(1)(b) of the GDPR, 6.1.1. is required for the specified purposes of properly processing your order and for the mutual fulfilment of obligations arising under the purchase contract. For this, we may forward your payment data to our payment service provider. The legal basis for the same is also Section 6 (1)(1)(b) 6.1.1. of the GDPR.

We may also process the data provided by you in order to inform you about further interesting products from our portfolio, or to send you e-mails containing technical information

The personal data (address, payment and ordering data) collected by us for processing your order shall be stored until the expiry of the legal retention period (10 years), after which it shall be deleted, unless we are obliged to store the same for a longer period under storage and documentation obligations relating to taxation and commercial law (commercial code, criminal code or tax code) as per Section 6 (1)(1)(c) of the GDPR, or if you have consented to storage exceeding the above period in accordance with Section 6 (1)(1)(a) 6.1.1. of the GDPR.

4. Data processing for order processing

As regards third party disclosure, we shall only disclose your personal data to the service partners involved in the completion of the contract, such as for example disclosures to the logistics company commissioned to make the delivery and to the payment service providers responsible for payment matters. The scope of the data provided during such disclosures shall however be limited to the minimum that is required.

a. Use of shipping service provider

If, as part of our processing, we disclose, transmit to, or provide access to data to other businesses (processors or third parties), we do so only on the basis of a legal license, e.g. if transmission of the data to third parties, e.g. to transport companies, in accordance with Art. 6 para. 1 lit. b DSGVO is required to fulfill the contract. Further, if, as a customer, you have a legal obligation to do so or based on our legitimate interests, e.g. when using webhosters. If we commission third parties to process data on the basis of a so-called “contract processing contract”, this is done on the basis of Art. 28 DGSVO.

We work with external service providers to process your order. Personal data required for customs clearance or delivery of the goods will be passed on to the transport company DHL Paket (national shipping (Germany) responsible for the delivery of the contract. Here are the corresponding contact details: 

DHL Paket GmbH
Sträßchensweg 10
53113 Bonn
Germany

Phone: 0049 228 1820
Mail: impressum.paket@dhl.com

b. Use of payment providers

Your payment details will be sent to the appropriate payment services provider, depending on the payment method selected by you. The payment service provider shall be responsible in respect of your payment data. Information, in particular, concerning the responsible authority within the payment service providers, the contact details of the data protection officers of the payment service providers, and the categories of personal data that are processed by the payment service providers can be obtained from the Internet addresses specified in each case below.

Not from us, but from the respective payment provider (for example credit card companies) information about your means of payment is stored. We only receive information about whether the payment was made by you.

We only pass on your personal data to third parties (subcontractors) to the extent required, who are commissioned by us to process an order (payment and delivery, if applicable, redemption) and who are only permitted to use this data for a specific purpose. Incidentally, your personal data will not be transmitted to any third party. We use your data only for the purpose for which they were given to us.

5. Use of cookies

We use cookies on our site. These are small files that your browser automatically creates and that are stored on your terminal device (laptop, tablet, smartphone, etc.)  when you visit our website.  Cookies do not cause any damage to your device.  They do not contain any executable code and therefore no viruses, trojans or other malware that would allow you to be exposed. 

A cookie contains information generated in connection with the specific terminal device used in each case. However, this does not mean that we will obtain direct knowledge of your identity thereby. 

There are two kinds of cookies.  Temporary (so-called session cookies) and persistent cookies. 

 a. Session cookies

On the one hand, cookies are used to make the experience of using of our range of services more pleasant for you. We use so-called session cookies to discern that you have already visited individual pages on our website by storing the so-called session ID.  That way, your computer can recognise if you return to our website.  These cookies also improve user friendliness.  When you visit our site again to avail of our services, it will be automatically recognised that you have already visited us earlier, together with your inputs and settings, so that you do not to have to enter them all over again.  The use of session cookies is necessary to make the website accessible to you.  These session cookies are automatically deleted when you close your browser. These are small files that your browser automatically creates and that are stored on your terminal device (laptop, tablet, smartphone, etc.) 

b. Persistent cookies

Additionally, we use cookies to capture statistical information on the use of our website and to optimise our product offer for you (see paragraphs 8, 9, 11 and 12). When you visit our site again, these cookies enable us to automatically recognise that you have already been here. We also use persistent cookies for direct marketing online, e.g. to be able to offer you customised adverts or assess the success of our advertising. The use of persistent cookies takes place due to our legitimate interest in direct online marketing, web analysis and improving our online presence. The data collected in this way are rendered pseudonymous through technical processes. This makes it impossible to link the data to you personally. This data is not stored together with other personal data related to you. These cookies are automatically deleted after a specified time in each case. You can find the duration of the respective cookie storage in the overview for the cookie settings in your web browser. 

In part, cookies save settings to simplify the ordering process (e.g. noting the contents of an online shopping cart for a later visit to the website). Insofar as personal data are processed by individual cookies used by us, that processing takes place in accordance with Article  6 (1), clause 1, lit. b of the GDPR, either to implement the contract, per Art. 6 para 1 p. 1 lit. a GDPR in the case of declared consent, or in accordance with Article  6 (1), clause 1, lit. f of the GDPR to safeguard our legitimate interests in the best-possible functionality of the website, as well as a client-friendly and effective configuration of the website visit. 

Most browsers accept cookies automatically. However, disabling cookies completely may mean that you cannot use all the features of our website.  Due to our legitimate interest, we also incorporate third-party cookies.  In this case, the relevant data packets are stored in your browser by or transferred to third parties.  You can also prohibit the use of third-party cookies using an corresponding setting in your browser.  Every browser is different in the way cookie settings are managed.  This is described in each brower's help menu, which includes directions on how to change your cookie settings.  These can be found under the following links for the respective browsers: 


Internet Explorer: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies
Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen
Chrome: https://support.google.com/chrome/answer/95647?hl=de&hlrm=en
Safari: https://support.apple.com/de-de/guide/safari/sfri11471/mac
Opera: https://help.opera.com/en/latest/web-preferences/#cookies

Alternatively, you can configure the use of cookies under "Manage tracking settings".

6. Use of Your Data for Direct Advertising

a. Newsletter

With your consent, you can be made a subscriber to our newsletter, in which we inform you about interesting current offers. The advertised goods and services are mentioned in the declaration of consent.

To register for our newsletter, we use the Double-opt-in procedure. This means that after you register, we send an email to the specified email address in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration, your information will be automatically deleted by us. In addition, we also store your set IP addresses and times of registration and confirmation. The purpose of the procedure is to prove your registration and, wherever necessary, for clarifications relating to possible misuse of your personal data.

The only requirement for sending the newsletter is your email address. The provision of additional, specially marked data is voluntary and is used to address you personally. After you confirm, we save your email address for the purpose of sending you our newsletters. The legal basis for this is article 6.1.1.a of the GDPR. 

At any time, you can withdraw our consent from allowing us to send you the newsletter, and opt out of the newsletter. You can withdraw consent by clicking on the link provided in each newsletter email, via this form on the website, by sending an email to contact@heroyne.comor sending a message to the contact information stated in the imprint/contact section of the website. 

Please note that we analyse your user behaviour whenever we send the newsletter.For this analysis, the emails we send contain so-called web beacons and/or tracking pixels which are one-pixel image files that are stored on our website.To perform the analyses, we link the files mentioned in section 3 and the web beacons with your email address and an individual ID. The links contained in the newsletter also include this ID. With the data we collect in this way, we create a user profile to customize the newsletter to your individual interests.  In this way, we keep track of when you read our newsletter and which links in the newsletter you click on. This enables us to determine what your personal interests are. We link these data to the actions you take on our website. 

You can object to this tracking at any time by clicking on the special link provided in every email or informing us via other means of contact. The information is stored for as long as you are subscribed to the newsletter. After you opt out, we store the data anonymously and purely for statistical purposes.

Sending the email newsletter to existing customers: If you have provided us with your email address when purchasing goods, we reserve the right to send you regular offers on similar goods from our range of products by email. According to Section 7, para. 3 of the UWG, we do not have to obtain a separate consent from you for this.  In this respect, data processing is based solely on our legitimate interest in personalised direct advertising in accordance with Art.  6 (1), clause 1, lit. f of the GDPR. If you initially objected to the use of your email address for this purpose, we will not send you any emails.  You are entitled to object to the use of your email address for the aforementioned advertising purpose at any time with future effect by notifying the responsible person named at the beginning. You are only required to pay transmission costs based on the relevant base tariffs.  After your objection has been received, the use of your email address for advertising purposes will be stopped immediately.

b. Advertising by post 

Based on our legitimate interest in personalized direct mail, we reserve the right to store your first and last name, your postal address and - insofar as we have received this additional information from you within the scope of the contractual relationship - your title, academic degree, year of birth and your professional, industry or business designation in accordance with Article  6 (1), clause 1, lit. f of the GDPR and to use this information for sending interesting offers and information about our products by post.

You can object to the storage and use of your data for this purpose at any time by sending a message to those responsible. 

7. Links to third-party websites

The links published on our website are researched and created by us with the greatest possible care.  However, we have no influence over the current or future design and content of the sites we link to.  We are not responsible for the linked pages and explicitly assert no claim of ownership to the content of these pages.  The provider of the website, to whom we refer you, bears sole liability for illegal, false or incomplete content as well as any damages incurred through the use or non-use of the information.  We explicitly exclude any liability as the party who merely refers to the publication by means of a link. 

We are only responsible for information issued by third parties whenever we have positive knowledge of it (i.e. also in the event of possibly illegal/criminal content) and it is technically possible and reasonable for us to prevent the use of such information. 

8. Analysis and tracking tools

With the tracking measures in use, we hope to ensure proper design and continual optimization of our website. Furthermore, we use the tracking measures to statistically record the usage of our website and to analyse it for the purposes of optimising the services we provide you. 

Google Analytics

We use Google Analytics, a web analytics service of Google LLC (“Google”), based on our legitimate interests (that is, interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 (1) lit. GDPR Google uses cookies. The information generated by the cookie about the use of the online offer by the users are usually transmitted to a Google server in the USA and stored there.

Google is certified under the Privacy Shield Agreement, providing a guarantee to comply with European privacy legislation (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

Google will use this information on our behalf to evaluate the use of our online offer by users, to compile reports on the activities within this online offering and to provide us with further services related to the use of this online offer and the internet usage. In this case, pseudonymous user profiles of the processed data can be created.  

We only use Google Analytics with activated IP anonymization. This means that the IP address of the users is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there.

The IP address submitted by the user’s browser will not be merged with other data provided by Google. Users can prevent the storage of cookies by setting their browser software accordingly; Users may also prevent the collection by Google of the data generated by the cookie and related to their use of the online offer as well as the processing of this data by Google by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de.

For more information about Google’s data usage, hiring and opt-out options, please read Google’s Privacy Policy (https://policies.google.com/technologies/ads) and Google’s Ads Ads Settings (https: // adssettings.google.com/authenticated)

As an alternative to the browser add-on or within browsers on mobile devices, please click this link to prevent the future detection by Google Analytics within this website: Analytics-Opt-Out. An opt-out cookie is stored on your device. If you delete your cookies, you must click this link again.

The personal data of users will be deleted or anonymized after 14 months.

Google Tag Manager

Google Tag Manager is a solution that allows us to manage so-called web site tags through one interface (including integrating Google Analytics and other Google marketing services into our online offering). The tag manager itself (which implements the tags) does not process users’ personal data. With regard to the processing of users’ personal data, reference is made to the following information about the Google services. Usage guidelines:https://www.google.com/intl/de/tagmanager/use-policy.html.

Google-Re/Marketing-Services

On the basis of our legitimate interests (ie interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 (1) lit. DSGVO), we use the marketing and remarketing services (“Google Marketing Services “), LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, (”Google“).

Google is certified under the Privacy Shield Agreement, which provides a guarantee to comply with European privacy legislation (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

Google Marketing Services allows us to better target advertisements for and on our website so that we only present ads to users that potentially match their interests. If a user e.g. Showing ads for products he’s been interested in on other websites is called remarketing. For these purposes, when Google and our other websites access Google Marketing Services, Google immediately codes Google and becomes so-called (re) marketing tags (invisible graphics or code, also known as Web Beacons “) incorporated into the website. With their help, the user is provided with an individual cookie on the device. a small file is saved (instead of cookies, comparable technologies can be used). Cookies can be set by different domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com or googleadservices.com. In this file is noted which websites the user visited, for what content he is interested and what offers he has clicked, as well as technical information about the browser and operating system, referring websites, visit time and other information on the use of the online offer. The IP address of the users is also recorded, whereby in the context of Google Analytics we announce that the IP address is shortened within member states of the European Union or other parties to the Agreement on the European Economic Area and only in exceptional cases to one Google server in the United States transferred and shortened there. The IP address will not be merged with data of the user within other offers from Google. The above information may also be linked by Google with such information from other sources. If the user subsequently visits other websites, they may be shown according to his interests, the ads tailored to him.

The data of the users are pseudonym processed in the context of the Google marketing services. That Google stores and processes e.g. not the name or e-mail address of the users, but processes the relevant data cookie-related within pseudonymous user profiles. That from the perspective of Google, the ads are not managed and displayed to a specifically identified person, but to the cookie owner, regardless of who that cookie owner is. This does not apply if a user has explicitly allowed Google to process the data without this pseudonymization. The information collected about users through Google Marketing Services is transmitted to Google and stored on Google’s servers in the United States.

Among the Google marketing services we use is u.a. the online advertising program “Google AdWords”. In the case of Google AdWords, each advertiser receives a different “conversion cookie”. Cookies can not be tracked through the websites of advertisers. The information gathered through the cookie is used to generate conversion statistics for AdWords advertisers who have opted for conversion tracking. Advertisers will see the total number of users who clicked on their ad and were redirected to a conversion tracking tag page. However, they do not receive any information that personally identifies users.

We can incorporate third-party ads based on the Google AdSense marketing service. AdSense uses cookies that enable Google and its affiliate websites to serve ads based on users’ visits to this site or other sites on the Internet.

In addition, we may use the “Google Tag Manager” to integrate and manage the Google Analytics and Marketing Services on our website.  

For more information about Google’s data usage for marketing purposes, see the overview page: https://www.google.com/policies/technologies/ads, Google’s Privacy Policy located at https://www.google.com/policies/privacy available.

If you wish to opt-out of interest-based advertising through Google Marketing Services, you can use the recruitment and opt-out options provided by Google: http://www.google.com/ads/preferences. Click here to opt out the collection via Google Tag Manager.

Social Plugins

a. Social Plugins

Our website uses social plugins (“plugins”) from the Facebook social network operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). The plugins are marked with a Facebook logo or the addition “Social Plug-in of Facebook” or “Facebook Social Plugin”. An overview of the Facebook plugins and their appearance can be found here: https://developers.facebook.com/docs/plugins

When you visit a page of our website that contains such a plugin, your browser connects directly to the Facebook servers. The content of the plugin is transmitted by Facebook directly to your browser and integrated into the page. Through this integration, Facebook receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Facebook profile or are currently not logged in to Facebook. This information (including your IP address) will be sent from your browser directly to a Facebook server in the US and stored there.

If you are logged in to Facebook, Facebook can immediately assign the visit to our website to your Facebook profile. If you interact with the plugins, for example, the “Like” button or leave a comment, this information is also transmitted directly to a server of Facebook and stored there. The information will also be posted on your Facebook profile and displayed to your Facebook friends.

The purpose and scope of the data collection and the further processing and use of the data by Facebook and your related rights and settings options for the protection of your privacy, please refer to the privacy policy of Facebook: http://www.facebook.com/policy.php

If you do not want Facebook to directly associate the data collected via our website with your Facebook profile, you must log out of Facebook before visiting our website. You can completely prevent the loading of Facebook plugins even with add-ons for your browser, e.g. with the “Facebook Blocker” (http://webgraph.com/resources/facebookblocker/) or the script blocker “NoScript” (http://noscript.net/).

b. Facebook Remarketing

We use Facebook’s remarketing feature “Custom Audiences” on our websites. Through this feature, we can target our visitors to advertisements by showing personalized, interest-based Facebook ads to visitors to the site when they visit the Facebook social network. To perform the feature, Facebook will implement our remarketing tag on our website.

Through this tag, a direct link to the Facebook servers is made when visiting the website. This will be transmitted to the Facebook server, which of our websites you have visited. Facebook maps this information to your personal Facebook user account. For more information on the collection and use of data by Facebook, about your rights in this regard and ways to protect your privacy can be found in the privacy policy of Facebook at https://www.facebook.com/about/privacy/ . If you do not want Facebook to associate the collected information directly with your Facebook user account, you can disable the remarketing feature “Custom Audiences” here. You have to be logged in to Facebook.

15. Rights of the persons affected

Your rights:

- pursuant to Art. 15 DSGVO, you may obtain information about your stored personal data.In particular, you can obtain information regarding the purposes of the processing, the category of the personal data, the categories of recipients to whom your data was or will be disclosed, the planned retention period, the existence of the right to have data corrected or deleted, limited processing or the right to object, the right to appeal, to trace your data back to its source as long as it wasn't collected by us, automated decision making including profiling and, possibly,  to request meaningful information relevant to the particulars; 

- pursuant to Art. 16 DSGVO, in regards to your personal data stored with us, you may request that incorrect data is corrected immediately or completed if necessary; 

- pursuant to Art. 17 DSGVO, you may request deletion of your personal data stored with us as long as the data processing is not required to exercise the right of free expression and the right to information, to fulfil a legal obligation for reasons of public interest or assertion, exertion or defence of legal claims; 

- pursuant to Art. 18 DSGVO, you may request limited processing of your personal data in so far as you contest the accuracy of said data, the data has been processed unlawfully, but you reject deletion and we don't need the data any longer, but you need them in order to assert, exercise or defend legal rights or, pursuant to Art. 21 DSGVO, you have filed an objection against data processing; 

- pursuant to Art. 20 DSGVO, you may obtain the personal data you provided to us in a structured, conventional and machine-readable format, or request that the data be transferred to another person in charge; 7 par. 3 DSGVO, you may revoke the consent you gave previously at any time. As a consequence, we're no longer allowed to process data that is based on this consent and 

- pursuant to Art. 77 DSGVO, you can raise this issue with the supervisory authority in the town where you usually live or work, or contact our headquarters. 

16. Right of objection

Provided that your personal data is processed on the basis of legitimate interests pursuant to Art.  6 para 1 p. 1 lit.  f DSGVO, you have the right, in accordance with Art.  21 DSGVO, to object to the processing of your personal data, so far as there are reasons that arise from your specific situation or if your opposition is directed against direct advertising.  In the latter case, you have a general right to object without giving a specific reason and we will implement it. 

Should you wish to exercise your right to revoke or object, it is sufficient to send an email to: contact@heroyne.com  

EN