About this cookie policy

This Cookie Policy explains what cookies are and how we use them, the types of cookies we use i.e, the information we collect using cookies and how that information is used, and how to control the cookie preferences. For further information on how we use, store, and keep your personal data secure, see our Privacy Policy. You can at any time change or withdraw your consent from the Cookie Declaration on our website.


Learn more about who we are, how you can contact us, and how we process personal data in our Privacy Policy.


Your consent applies to the following domains: collieflowers.co.uk


What are cookies ?

Cookies are small text files that are used to store small pieces of information. They are stored on your device when the website is loaded on your browser. These cookies help us make the website function properly, make it more secure, provide better user experience, and understand how the website performs and to analyze what works and where it needs improvement.


How do we use cookies ?


As most of the online services, our website uses first-party and third-party cookies for several purposes. First-party cookies are mostly necessary for the website to function the right way, and they do not collect any of your personally identifiable data.The third-party cookies used on our website are mainly for understanding how the website performs, how you interact with our website, keeping our services secure, providing advertisements that are relevant to you, and all in all providing you with a better and improved user experience and help speed up your future interactions with our website.


What types of cookies do we use ?


Essential: Some cookies are essential for you to be able to experience the full functionality of our site. They allow us to maintain user sessions and prevent any security threats. They do not collect or store any personal information. For example, these cookies allow you to log-in to your account and add products to your basket, and checkout securely.Statistics: These cookies store information like the number of visitors to the website, the number of unique visitors, which pages of the website have been visited, the source of the visit, etc. These data help us understand and analyze how well the website performs and where it needs improvement.


Marketing: Our website displays advertisements  (our own only, we do not permit third party advertising on our site). These cookies are used to personalize the advertisements that we show to you so that they are meaningful to you. These cookies also help us keep track of the efficiency of these ad campaigns.


The information stored in these cookies may also be used by the third-party ad providers to show you ads on other websites on the browser as well.


Functional: These are the cookies that help certain non-essential functionalities on our website. These functionalities include embedding content like videos or sharing content of the website on social media platforms.


Preferences: These cookies help us store your settings and browsing preferences like language preferences so that you have a better and efficient experience on future visits to the website.


The list below details the cookies used on our website (last updated 3 October 2022).

cloudfront.net 


Essential 


Description of Service 


This is a content delivery network provided by Amazon. The use of a CDN enables the user to make content available to you for retrieval more quickly with the help of regionally or internationally distributed servers. When you access this content, a connection is established between you and the respective servers of the CDN, whereby personal data may be transmitted. 


Processing Company 

Amazon Web Services EMEA SARL

38 Avenue John F. Kennedy, L-1855 Luxemburg 


Data Purposes 

This list represents the purposes of the data collection and processing. 

  • Content Delivery 


Technologies Used 

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser. 

  • Scripts 


Data Collected 

This list represents all (personal) data that is collected by or through the use of this service. 

  • User agent data 
  • Usage data 
  • Device operating system 
  • Device information 
  • IP address 
  • Browser information 


Legal Basis 

In the following the required legal basis for the processing of data is listed. 

  • Art. 6 para. 1 s. 1 lit. f GDPR 


Location of Processing 

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately. 

  • Worldwide 


Retention Period 

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes. 

  • The data will be deleted as soon as they are no longer needed for the processing purposes. 


Transfer to Third Countries 

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. If the data is transferred to the USA, there is a risk that your data can be processed by US authorities, for control and surveillance measures, possibly without legal remedies. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the website provider’s privacy policy or contact the website provider directly. 

  • Worldwide 


Data Recipients 

In the following the recipients of the data collected are listed. 

  • Amazon Web Services EMEA SARL 

Click here to read the privacy policy of the data processor 

https://aws.amazon.com/privacy/ 

Click here to read the cookie policy of the data processor 

https://aws.amazon.com/privacy/ 


Ecwid 


Essential 


Description of Service 

This is an eCommerce-Tool. With this tool the user can implement an online shop into their website and provide their products. 


Processing Company 

Ecwid, Inc.
687 S. Coast Highway 101, Encinitas, California 92024, United States of America 

Data Protection Officer of Processing Company 

Below you can find the email address of the data protection officer of the processing company. 

privacy@ecwid.com 


Data Purposes 

This list represents the purposes of the data collection and processing. 

  • Providing Service 


Technologies Used 

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser. 

  • Cookies 
  • Widgets 


Data Collected 

This list represents all (personal) data that is collected by or through the use of this service. 

  • Browser information 
  • Number of page views 
  • Traffic data 
  • Geographic location 
  • IP address 
  • Order information 


Legal Basis 

In the following the required legal basis for the processing of data is listed. 

  • Art. 6 para. 1 s. 1 lit. f GDPR 


Location of Processing 

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately. 

  • United States of America 


Retention Period 

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes. 

  • The data will be deleted as soon as they are no longer needed for the processing purposes. 


Transfer to Third Countries 

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. If the data is transferred to the USA, there is a risk that your data can be processed by US authorities, for control and surveillance measures, possibly without legal remedies. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the website provider’s privacy policy or contact the website provider directly. 

  • United States of America 


Data Recipients 

In the following the recipients of the data collected are listed. 

  • Ecwid Inc. 

Click here to read the privacy policy of the data processor 

https://www.ecwid.com/eu-privacy-policy 


FBCDN Facebook 


Essential 


Description of Service 

This is a content delivery network from Facebook. 


Processing Company 

Meta Platforms Ireland Ltd.
4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland 

Data Protection Officer of Processing Company 

Below you can find the email address of the data protection officer of the processing company. 

https://www.facebook.com/help/contact/540977946302970 


Data Purposes 

This list represents the purposes of the data collection and processing. 

  • Content delivery network (CDN) 


Technologies Used 

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser. 

  • Cookies 


Data Collected 

This list represents all (personal) data that is collected by or through the use of this service. 

  • Browser information 
  • Browser version 
  • Browser language 
  • Screen resolution 
  • Device operating system 
  • Name of website 
  • User agent 
  • IP address 


Legal Basis 

In the following the required legal basis for the processing of data is listed. 

  • Art. 6 para. 1 s. 1 lit. a GDPR 


Location of Processing 

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately. 

  • European Union 


Retention Period 

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes. 

  • The data will be deleted as soon as they are no longer needed for the processing purposes. 


Transfer to Third Countries 

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. If the data is transferred to the USA, there is a risk that your data can be processed by US authorities, for control and surveillance measures, possibly without legal remedies. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the website provider’s privacy policy or contact the website provider directly. 

  • Worldwide 


Data Recipients 

In the following the recipients of the data collected are listed. 

  • Meta Platforms Ireland Ltd., Meta Platforms Inc. 

Click here to read the privacy policy of the data processor 

https://www.facebook.com/privacy/explanation 

Click here to read the cookie policy of the data processor 

https://www.facebook.com/privacy/explanation 


Google AJAX 


Essential 


Description of Service 

This is a stable, reliable, high-speed, globally available content delivery network (“CDN”) for the most popular, open-source JavaScript libraries 


Processing Company 

Google Ireland Limited
Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland 

Data Protection Officer of Processing Company 

Below you can find the email address of the data protection officer of the processing company. 

https://support.google.com/policies/troubleshooter/7575787?hl=en 


Data Purposes 

This list represents the purposes of the data collection and processing. 

  • Content Delivery 


Technologies Used 

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser. 

  • JavaScript 


Data Collected 

This list represents all (personal) data that is collected by or through the use of this service. 

  • IP address 
  • Browser information 
  • Geographic location 
  • Websites visited 


Legal Basis 

In the following the required legal basis for the processing of data is listed. 

  • Art. 6 para. 1 s. 1 lit. a GDPR 


Location of Processing 

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately. 

  • European Union 


Retention Period 

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes. 

  • The data will be deleted as soon as they are no longer needed for the processing purposes. 


Transfer to Third Countries 

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. If the data is transferred to the USA, there is a risk that your data can be processed by US authorities, for control and surveillance measures, possibly without legal remedies. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the website provider’s privacy policy or contact the website provider directly. 

  • United States of America 
  • Taiwan 
  • Singapore 
  • Chile 


Data Recipients 

In the following the recipients of the data collected are listed. 

  • Google LLC 
  • Google Ireland Limited 
  • Alphabet Inc 


Click here to read the privacy policy of the data processor 

https://policies.google.com/privacy?hl=en 

Click here to read the cookie policy of the data processor 

https://policies.google.com/technologies/cookies?hl=en 

Click here to opt out from this processor across all domains 

https://safety.google/privacy/privacy-controls/ 


gstatic.com 

Essential 

Description of Service 

This is a domain used by Google to off-load static content to a different domain name in an effort to reduce bandwidth usage and increase network performance for the end user. 

Processing Company 

Alphabet Inc.
1600 Amphitheatre Parkway, Mountain View, CA 94043-1351, United States of America 

Data Protection Officer of Processing Company 

Below you can find the email address of the data protection officer of the processing company. 

https://support.google.com/policies/contact/general_privacy_form 

Data Purposes 

This list represents the purposes of the data collection and processing. 

  • Increasing network performance 
  • Reducing bandwidth usage 

Technologies Used 

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser. 

  • JavaScript 

Data Collected 

This list represents all (personal) data that is collected by or through the use of this service. 

  • Images 
  • CSS 

Legal Basis 

In the following the required legal basis for the processing of data is listed. 

  • Art. 6 para. 1 s. 1 lit. f GDPR 

Location of Processing 

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately. 

  • United States of America 

Retention Period 

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes. 

  • Requests for CSS assets are cached for 1 day, font files are cached for one year. Some information retained until removed by the user, some expires after a specific period of time, some is retained until the user's Google Account is deleted. 

Transfer to Third Countries 

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. If the data is transferred to the USA, there is a risk that your data can be processed by US authorities, for control and surveillance measures, possibly without legal remedies. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the website provider’s privacy policy or contact the website provider directly. 

  • Worldwide 

Data Recipients 

In the following the recipients of the data collected are listed. 

  • Alphabet Inc., Google LLC, Google Ireland Limited 

Click here to read the privacy policy of the data processor 

http://www.google.com/intl/de/policies/privacy/ 

Click here to read the cookie policy of the data processor 

https://policies.google.com/technologies/cookies?hl=en 

Click here to opt out from this processor across all domains 

https://safety.google/privacy/privacy-controls/ 

Storage Information 

Below you can see the longest potential duration for storage on a device, as set when using the cookie method of storage and if there are any other methods used. 

  • Maximum age of cookie storage: Session 
  • Non-cookie storage: no 


Usercentrics Consent Management Platform 

Essential 

Description of Service 

This is a consent management service. Usercentrics GmbH is used on the website as a processor for the purpose of consent management. 

Processing Company 

Usercentrics GmbH
Sendlinger Str. 7, 80331 Munich, Germany 

Data Protection Officer of Processing Company 

Below you can find the email address of the data protection officer of the processing company. 

datenschutz@usercentrics.com 

Data Purposes 

This list represents the purposes of the data collection and processing. 

  • Compliance with legal obligations 
  • Consent storage 

Technologies Used 

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser. 

  • Local storage 
  • Pixel 

Data Collected 

This list represents all (personal) data that is collected by or through the use of this service. 

  • Opt-in and opt-out data 
  • Referrer URL 
  • User agent 
  • User settings 
  • Consent ID 
  • Time of consent 
  • Consent type 
  • Template version 
  • Banner language 

Legal Basis 

In the following the required legal basis for the processing of data is listed. 

  • Art. 6 para. 1 s. 1 lit. c GDPR 

Location of Processing 

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately. 

  • European Union 

Retention Period 

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes. 

  • The consent data (given consent and revocation of consent) are stored for three years. The data will then be deleted immediately. 

Data Recipients 

In the following the recipients of the data collected are listed. 

  • Usercentrics GmbH 

Click here to read the privacy policy of the data processor 

https://usercentrics.com/privacy-policy/ 


Facebook Social Plugins 

Marketing 

Description of Service 

This is a social plug-in from Facebook, which allows the user to connect their website with the social network Facebook. 

Processing Company 

Meta Platforms Ireland Ltd.
4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland 

Data Protection Officer of Processing Company 

Below you can find the email address of the data protection officer of the processing company. 

https://www.facebook.com/help/contact/540977946302970 

Data Purposes 

This list represents the purposes of the data collection and processing. 

  • Integration of Facebook functions 
  • Optimization 
  • Marketing 

Technologies Used 

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser. 

  • Cookies 

Data Collected 

This list represents all (personal) data that is collected by or through the use of this service. 

  • Browser information 
  • Date and time of visit 
  • Facebook user ID 
  • Websites visited 
  • HTTP-header 
  • Interaction data 
  • Browser type 
  • IP address 

Legal Basis 

In the following the required legal basis for the processing of data is listed. 

  • Art. 6 para. 1 s. 1 lit. a GDPR 

Location of Processing 

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately. 

  • European Union 

Retention Period 

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes. 

  • The data will be deleted as soon as they are no longer needed for the processing purposes. 

Transfer to Third Countries 

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. If the data is transferred to the USA, there is a risk that your data can be processed by US authorities, for control and surveillance measures, possibly without legal remedies. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the website provider’s privacy policy or contact the website provider directly. 

  • United States of America 
  • Singapore 

Data Recipients 

In the following the recipients of the data collected are listed. 

  • Meta Platforms Ireland Ltd., Meta Platforms Inc. 

Click here to read the privacy policy of the data processor 

https://www.facebook.com/privacy/explanation 

Click here to read the cookie policy of the data processor 

https://www.facebook.com/policies/cookies/ 

Click here to opt out from this processor across all domains 

https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen 


Fontawesome 

Functional 

Description of Service 

This is a font and icon toolkit service.  

Processing Company 

Fonticons. Inc.
6 Porter Road, Apartment 3R, Cambridge, MA 02140, United States of America 

Data Protection Officer of Processing Company 

Below you can find the email address of the data protection officer of the processing company. 

privacy@fontawesome.com 

Data Purposes 

This list represents the purposes of the data collection and processing. 

  • Providing fonts 

Data Collected 

This list represents all (personal) data that is collected by or through the use of this service. 

  • IP address 
  • Referrer URL 

Legal Basis 

In the following the required legal basis for the processing of data is listed. 

  • Art. 6 para. 1 s. 1 lit. a GDPR 

Location of Processing 

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately. 

  • United States of America 

Retention Period 

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes. 

  • The data will be deleted as soon as they are no longer needed for the processing purposes. 

Transfer to Third Countries 

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. If the data is transferred to the USA, there is a risk that your data can be processed by US authorities, for control and surveillance measures, possibly without legal remedies. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the website provider’s privacy policy or contact the website provider directly. 

  • United States of America 

Data Recipients 

In the following the recipients of the data collected are listed. 

  • Fonticons. Inc. 

Click here to read the privacy policy of the data processor 

https://fontawesome.com/privacy 

Storage Information 

Below you can see the longest potential duration for storage on a device, as set when using the cookie method of storage and if there are any other methods used. 

  • Maximum age of cookie storage: 2 years 
  • Non-cookie storage: no 


Google Analytics 

Functional 

Description of Service 

This is a web analytics service. With this the user can measure the advertising return of interest "ROI" as well as track user behavior with flash, video, websites and applications. 

Processing Company 

Google Ireland Limited
Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland 

Data Protection Officer of Processing Company 

Below you can find the email address of the data protection officer of the processing company. 

https://support.google.com/policies/contact/general_privacy_form 

Data Purposes 

This list represents the purposes of the data collection and processing. 

  • Marketing 
  • Analytics 

Technologies Used 

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser. 

  • Cookies 
  • Pixel 
  • JavaScript 
  • Device fingerprinting 

Data Collected 

This list represents all (personal) data that is collected by or through the use of this service. 

  • Click path 
  • Date and time of visit 
  • Device information 
  • Location information 
  • IP address 
  • Pages visited 
  • Referrer URL 
  • Browser information 
  • Hostname 
  • Browser language 
  • Browser type 
  • Screen resolution 
  • Device operating system 
  • Interaction data 
  • User behaviour 
  • Visited URL 

Legal Basis 

In the following the required legal basis for the processing of data is listed. 

  • Art. 6 para. 1 s. 1 lit. a GDPR 

Location of Processing 

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately. 

  • European Union 

Retention Period 

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes. 

  • The Retention Period depends on the type of the saved data. Each client can choose how long Google Analytics retains data before automatically deleting it. 

Transfer to Third Countries 

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. If the data is transferred to the USA, there is a risk that your data can be processed by US authorities, for control and surveillance measures, possibly without legal remedies. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the website provider’s privacy policy or contact the website provider directly. 

  • United States of America 
  • Singapore 
  • Chile 
  • Taiwan 

Data Recipients 

In the following the recipients of the data collected are listed. 

  • Google Ireland Limited, Alphabet Inc., Google LLC 

Click here to read the privacy policy of the data processor 

https://policies.google.com/privacy?hl=en 

Click here to read the cookie policy of the data processor 

https://policies.google.com/technologies/cookies?hl=en 

Click here to opt out from this processor across all domains 

https://tools.google.com/dlpage/gaoptout?hl=de 

Storage Information 

Below you can see the longest potential duration for storage on a device, as set when using the cookie method of storage and if there are any other methods used. 

  • Maximum age of cookie storage: 2 years 
  • Non-cookie storage: no 


Google Fonts 

Functional 

Description of Service 

This is a collection of fonts for commercial and personal use. 

Processing Company 

Google Ireland Limited
Gordon House, 4 Barrow St, Dublin 4, Ireland 

Data Protection Officer of Processing Company 

Below you can find the email address of the data protection officer of the processing company. 

https://support.google.com/policies/contact/general_privacy_form 

Data Purposes 

This list represents the purposes of the data collection and processing. 

  • Providing fonts 
  • Improvement of service 

Technologies Used 

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser. 

  • APIs 

Data Collected 

This list represents all (personal) data that is collected by or through the use of this service. 

  • IP address 
  • Aggregated usage numbers 
  • Font file requests 
  • Referrer URL 
  • CSS requests 
  • User agent 
  • Browser information 

Legal Basis 

In the following the required legal basis for the processing of data is listed. 

  • Art. 6 para. 1 s. 1 lit. a GDPR 

Location of Processing 

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately. 

  • European Union 

Retention Period 

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes. 

  • The data will be deleted as soon as they are no longer needed for the processing purposes. 

Transfer to Third Countries 

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. If the data is transferred to the USA, there is a risk that your data can be processed by US authorities, for control and surveillance measures, possibly without legal remedies. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the website provider’s privacy policy or contact the website provider directly. 

  • United States of America 
  • Singapore 
  • Taiwan 
  • Chile 

Data Recipients 

In the following the recipients of the data collected are listed. 

  • Alphabet Inc., Google LLC, Google Ireland Limited 

Click here to read the privacy policy of the data processor 

https://policies.google.com/privacy?hl=en 

Click here to read the cookie policy of the data processor 

https://policies.google.com/technologies/cookies?hl=en 


PayPal 

Functional 

Description of Service 

This is a payment service.  

Processing Company 

PayPal (Europe) S.à r.l. et Cie, S.C.A
22-24 Boulevard Royal, L-2449 Luxembourg 

Data Protection Officer of Processing Company 

Below you can find the email address of the data protection officer of the processing company. 

https://www.paypal.com/uk/smarthelp/contact-us/privacy 

Data Purposes 

This list represents the purposes of the data collection and processing. 

  • Payment 

Technologies Used 

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser. 

  • Cookies 

Data Collected 

This list represents all (personal) data that is collected by or through the use of this service. 

  • Browser information 
  • Credit and debit card number 
  • First name 
  • Geographic location 
  • Internet service provider 
  • IP address 
  • Last name 
  • Payment information 
  • Purchase activity 
  • Transaction information 
  • Bank details 
  • Master and contractual data 
  • Password 
  • TANs and checksums 
  • Device type 
  • Network connection type 
  • Device information 
  • Account information 
  • E-mail address 

Legal Basis 

In the following the required legal basis for the processing of data is listed. 

  • Art. 6 para. 1 s. 1 lit. b GDPR 

Retention Period 

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes. 

  • The data will be deleted as soon as they are no longer needed for the processing purposes. 

Transfer to Third Countries 

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. If the data is transferred to the USA, there is a risk that your data can be processed by US authorities, for control and surveillance measures, possibly without legal remedies. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the website provider’s privacy policy or contact the website provider directly. 

  • Worldwide 

Data Recipients 

In the following the recipients of the data collected are listed. 

  • PayPal (Europe) S.à r.l. et Cie, S.C.A, PayPal Group, PayPal Service Providers, Financial institutions 

Click here to read the privacy policy of the data processor 

https://www.paypal.com/de/webapps/mpp/ua/privacy-full#2 

Click here to read the cookie policy of the data processor 

https://www.paypal.com/de/webapps/mpp/ua/cookie-full 

Storage Information 

Below you can see the longest potential duration for storage on a device, as set when using the cookie method of storage and if there are any other methods used. 

  • Maximum age of cookie storage: 10 years 
  • Non-cookie storage: no 


reCAPTCHA 

Functional 

Description of Service 

This is a service that checks whether data is entered by a human or by an automated program.  

Processing Company 

Google Ireland Limited
Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland 

Data Protection Officer of Processing Company 

Below you can find the email address of the data protection officer of the processing company. 

https://support.google.com/policies/contact/general_privacy_form 

Data Purposes 

This list represents the purposes of the data collection and processing. 

  • Bot Protection 
  • Spam prevention 
  • Fraud detection 

Technologies Used 

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser. 

  • Scripts 

Data Collected 

This list represents all (personal) data that is collected by or through the use of this service. 

  • Browser language 
  • Browser plug-ins 
  • Click path 
  • Date and time of visit 
  • IP address 
  • User behaviour 
  • Amount of time spent on a page 
  • User input 
  • Device information 
  • Mouse movements 
  • Geographic location 
  • Device operating system 

Legal Basis 

In the following the required legal basis for the processing of data is listed. 

  • Art. 6 para. 1 s. 1 lit. a GDPR 

Location of Processing 

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately. 

  • European Union 

Retention Period 

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes. 

  • Data will be deleted as soon as they are no longer needed for the processing purposes. 

Transfer to Third Countries 

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. If the data is transferred to the USA, there is a risk that your data can be processed by US authorities, for control and surveillance measures, possibly without legal remedies. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the website provider’s privacy policy or contact the website provider directly. 

  • United States of America 
  • Singapore 
  • Taiwan 
  • Chile 

Data Recipients 

In the following the recipients of the data collected are listed. 

  • Alphabet Inc. 
  • Google LLC 
  • Google Ireland Limited 

Click here to read the privacy policy of the data processor 

https://policies.google.com/privacy?hl=en 

Click here to read the cookie policy of the data processor 

https://policies.google.com/technologies/cookies?hl=en 

Storage Information 

Below you can see the longest potential duration for storage on a device, as set when using the cookie method of storage and if there are any other methods used. 

  • Maximum age of cookie storage: 5 months, 27 days 
  • Non-cookie storage: no 


Site Analytics 

Functional 

Description of Service 

Web Analytics built into the core of the website. 

Processing Company 

Website owner 

Data Purposes 

This list represents the purposes of the data collection and processing. 

  • Analytics 

Technologies Used 

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser. 

  • Cookies 

Data Collected 

This list represents all (personal) data that is collected by or through the use of this service. 

  • Browser information 
  • Browser language 
  • Date and time of visit 
  • Device information 
  • IP address 
  • JavaScript support 
  • Pages visited 
  • Referrer URL 
  • Screen resolution 
  • Time zone 
  • Usage data 

Legal Basis 

In the following the required legal basis for the processing of data is listed. 

  • Art. 6 para. 1 s. 1 lit. a GDPR 

Location of Processing 

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately. 

  • United Kingdon 

Retention Period 

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes. 

  • Data collected by our website analytics is kept indefinitely but does not contain personally identifiable information. IP addresses are anonymized. 

Transfer to Third Countries 

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. If the data is transferred to the USA, there is a risk that your data can be processed by US authorities, for control and surveillance measures, possibly without legal remedies. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the website provider’s privacy policy or contact the website provider directly. 

  • Worldwide 

Storage Information 

Below you can see the longest potential duration for storage on a device, as set when using the cookie method of storage and if there are any other methods used. 

  • Maximum age of cookie storage: Session 
  • Non-cookie storage: no 


Site Personalization 

Functional 

Description of Service 

Customization and personalization of the website experience for visitors.  

Processing Company 

Website Owner 

Data Purposes 

This list represents the purposes of the data collection and processing. 

  • Personalisation 

Technologies Used 

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser. 

  • Cookies 

Data Collected 

This list represents all (personal) data that is collected by or through the use of this service. 

  • Date and time of visit 
  • Device information 
  • Number of visits 

Legal Basis 

In the following the required legal basis for the processing of data is listed. 

  • Art. 6 para. 1 s. 1 lit. a GDPR 

Location of Processing 

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately. 

  • United Kingdom

Retention Period 

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes. 

  • Data is not retained by the website owner. Data stored in cookies expire after one year. 

Transfer to Third Countries 

This service may forward the collected data to a different country. Please note that this service might transfer the data to a country without the required data protection standards. If the data is transferred to the USA, there is a risk that your data can be processed by US authorities, for control and surveillance measures, possibly without legal remedies. Below you can find a list of countries to which the data is being transferred. For more information regarding safeguards please refer to the website provider’s privacy policy or contact the website provider directly. 

  • Worldwide 


Trustpilot 

Functional 

Description of Service 

This is a review service. This service collects reviews to gain feedback.  

Processing Company 

Trustpilot A/S
Pilestraede 58, 5th floor, 1112 Copenhagen, Denmark 

Data Protection Officer of Processing Company 

Below you can find the email address of the data protection officer of the processing company. 

privacy@trustpilot.com 

Data Purposes 

This list represents the purposes of the data collection and processing. 

  • Optimization 
  • Feedback 
  • Customer Support 
  • Analytics 

Technologies Used 

This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser. 

  • Web beacons 
  • Cookies 

Data Collected 

This list represents all (personal) data that is collected by or through the use of this service. 

  • IP address 
  • Geographic location 
  • Browser information 
  • Device settings 
  • Time zone 
  • Data provided through forms on the website 

Legal Basis 

In the following the required legal basis for the processing of data is listed. 

  • Art. 6 para. 1 s. 1 lit. a GDPR 

Location of Processing 

This is the primary location where the collected data is being processed. If the data is also processed in other countries, you are informed separately. 

  • European Union 

Retention Period 

The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes. 

  • The data will be deleted after the account has been deleted. 

Data Recipients 

In the following the recipients of the data collected are listed. 

  • Trustpilot A/S 

Click here to read the privacy policy of the data processor 

https://de.legal.trustpilot.com/for-businesses/business-privacy-policy