As the operator of this website, Bauerfeind takes the protection of your personal data very seriously. We treat your personal data confidentially and in observance of the applicable statutory data protection regulations and this Privacy Policy.
Various pieces of personal data are collected when you use this website. Personal data is data that can be used to identify you as a person. As the website operator, we only collect, use or disclose your personal data to third parties if this is legally permissible or if you have given your consent for your data to be processed. This privacy notice explains what data we collect and what we use it for. It also outlines how and for what purposes we process it.
We would like to point out that the transmission of data online (e.g. communication by e-mail) may be vulnerable to security breaches. It is not possible to fully protect data from access by third parties.
Data controller and data protection officer
The data controller for the processing of data on this website is:
Bauerfeind AG
Triebeser Straße 16
07937 Zeulenroda-Triebes
Germany
We have appointed an internal company data protection officer (pursuant to Article 37 et seq GDPR). You can reach this person under the following contact details:
This website uses SSL encryption for security reasons and in order to protect the transmission of confidential information, such as orders or requests that you send to us as the website operator. Your connection is being encrypted if a padlock icon appears in your browser address bar and the start of the URL in your address bar changes from "http://" to "https://".
When SSL encryption is activated, the data that you transfer to us cannot be read by third parties.
2. Your rights concerning data protection
Access, blocking, erasure, restriction of processing, objection
As part of the applicable statutory provisions, you have various rights relating to the processing of your personal data. You can contact our data protection officer at any time using the details provided if you would like to exercise your rights or if you have any questions concerning your personal data.
Each data subject has the following rights under the GDPR:
The right of access to the personal data stored about you (pursuant to Article 15 GDPR),
The right to have your personal data rectified (pursuant to Article 16 GDPR),
The right to erasure (pursuant to Article 17 GDPR),
The right to the restriction of processing (pursuant to Article 18 GDPR),
The right to object to your data being processed (pursuant to Article 21 GDPR).
The right of access and the right to erasure are subject to the restrictions laid down in Sections 34 and 35 of the German Federal Data Protection Act (BDSG).
The right to data portability
You have the right (pursuant to Article 20 GDPR) to have data that we have processed by automated means on the basis of your consent or in order to perform a contract to be given to you or to a third party in a commonly used and machine-readable format. If you request that this data be transmitted directly to another controller, this will only take place if technically feasible.
Withdrawal of your consent to the processing of your data
If we are processing your data on the basis of your consent (for example, in accordance with Article 6 (1) a GDPR), you have the right to withdraw this consent at any time. To exercise this right, you simply need to notify us of your request by e-mail. In order to be able to process your withdrawal as quickly as possible, please describe the circumstances in which you gave your consent in the message. This withdrawal of consent will not affect the lawfulness of any data processing that has already taken place.
The right to lodge a complaint with the competent supervisory authority
As a data subject, you have the right to lodge a complaint with a supervisory authority in the event of infringements of data protection legislation.
3. Collection of data on our website
Cookies
Our website uses cookies to make it more user-friendly, efficient, and secure. Cookies are small text files that your browser stores on your device.
Other cookies, which may serve for instance to measure the performance of our website, provide extended features, personalize the website or are utilized for marketing purposes, will only be used if you have granted your consent via our cookie consent banner that is displayed (in accordance with Article 6 (1) a GDPR). If you do not consent to the use of cookies, it is possible that our website will be unable to execute all features properly.
Please note that some of these cookies may be placed by commissioned service providers such as Google, Facebook, and YouTube (known as third-party cookies). In order to provide their commissioned services, these companies may use cookies to obtain knowledge about your browsing behavior on our website and characteristics that identify you personally; this data may also be transferred and stored outside the EU, for instance on their servers in the USA. By consenting to the activation of cookies, you are also consenting to the transmission of data to states outside the EU and the EEA. In this context, we hereby inform you that the European Court of Justice has classified the US as a country with an insufficient level of data protection according to EU standards. In particular, there is a risk that US authorities may process your data for monitoring and surveillance purposes, potentially without the possibility of redress.
In the context of displaying our cookie consent banner from the provider Usercentrics GmbH, Sendlinger Str. 7, 80331 München, DE, we use cookies in order to manage your cookie settings. Further information about Usercentrics can be found at https://usercentrics.com/privacy-policy/.
You may adjust or withdraw your consent to the use of cookies using the following button at any time with future effect:
You can also configure your browser to alert you when cookies are created so that you can choose whether to accept them on a case-by-case basis. You can also configure it to always decline cookies or to decline them in certain cases as well as to automatically delete cookies when you close the browser. Please note that deactivating cookies may limit the functionality of this website.
Server log files
The provider of this website automatically collects and stores information in server log files automatically transferred to us by your browser when you visit this website. This information includes:
Your browser type and browser version
Your operating system (if applicable)
The referrer URL
The URL visited, including the protocol and method
Your computer’s hostname
The date and time of the server request
Your IP address
GeoIP country code
This data is not merged with other sources of data.
The abovementioned data is processed within the server log files so that we can fulfil our legitimate interest (pursuant to Article 6 (1) f GDPR). Our legitimate interest is to provide you, as one of our users, with a functional website tailored to your needs (e.g. in the right language for your country) so that our website is presented in an attractive manner and can be optimized continuously. In addition, collecting this data allows us to prevent or protect ourselves against cyber attacks, to perform error analysis, and to detect potential cases of fraud.
The data is processed by the companies Netigo GmbH, paper+coffee GmbH, TRITUM GmbH and T-Systems Multimedia Solutions GmbH on the basis of a data processing agreement pursuant to Article 28 GDPR, in which we require the service provider to protect the data of our customers, and not to disclose this data to unauthorized third parties. The data is only processed in the EU and is not disclosed to third parties. The server log files are stored by the provider for 30 days before being deleted.
How to contact us
Our website provides various means for you to contact us. For example, if you would like to ask us any questions or give us any feedback, you can do this using the contact form provided on our website or the contact details listed (in particular our e-mail address). You can also use the chat service in our online shop to contact our customer service representatives.
When using the contact form and the chat service, you are required to enter some personal details about yourself before you can send your inquiry to us. For example, you need to provide us with your name and e-mail address. We need this information to communicate with you and to provide you with a fast, high-quality service. This falls within the scope of our legitimate interest (in accordance with Article 6 (1) f GDPR). In addition, details concerning your request help us to forward it to the right department quickly. You can also choose to give us your telephone number if you would like us to contact you in this way.
We will only use and store your data for the purpose of processing your request. We will pass on the information you enter to the relevant members of staff, who will process your request according to your requirements. We will only share your data with third parties if doing so is necessary in order to process your request. Our chat feature is provided using the web hosting services provided by netigo GmbH. We have concluded a data processing agreement with netigo in accordance with Article 28 GDPR, in which we require the service provider to protect our customers’ data, and not to disclose it to unauthorized third parties. The data is only processed in the EU and is not disclosed to third parties.
We will store your request and the data provided in your request for the purpose of processing your request and so that we can respond to any follow-up questions. We will keep this data until you ask us to delete it or until we have fulfilled the purpose for which we were storing it. Any mandatory legal provisions – in particular retention periods – will remain unaffected by this.
Registration – User account for our online shop
You must set up a password-protected customer account before placing any orders on our online shop. Your customer account contains an overview of all the orders you have placed to date as well as all active orders.
The operator does not assume any liability for the misuse of passwords unless this misuse was caused by the operator itself.
We store all the data that you provide as a customer during the order process or when registering. This includes:
Registration form (https://www.bauerfeind-sports.uk/account/login)
Title
First name
Last name
E-mail
Password
Shopping cart
Items
Item prices
Taxes
Applied Promotions
Voucher codes
Checkout process
Billing address
Delivery options
Payment details
Delivery address (if different)
Ordered items
"My Account" area
The data you provided during registration
Your saved adresses
Your order history
We only transmit personal data to third parties if this is necessary in order for us to perform a contract. For example, we may share your data with the delivery company we engage to deliver your goods or the bank responsible for processing your payment. Otherwise, we only disclose your data if you have expressly agreed to this. We do not share your data with third parties, e.g. for marketing purposes, without your express consent.
Data is processed on the basis of Article 6 (1) b GDPR, which allows data to be processed for the purposes of performing a contract or pre-contractual measures.
Review function
We and other users of our products and services are very interested in hearing your thoughts. For this reason, our website provides you with the opportunity to add reviews, e.g. about our products. These reviews are visible to anyone who visits our site and are meant to provide objective user information. When you write a review, you can choose whether you would like to provide your name or a pseudonym as well. In such cases, your name or pseudonym will be displayed and stored alongside your review, the title of your review and the date on which you wrote it.
To make the reviews known to a larger audience, they are also displayed on review service providers (such as "Google Customer Reviews"). For this purpose, your first name/pseudonym as well as the rating, title, text and time of creation are exported and shown on these platforms. The review service provider does not receive any further information about you as a person or your purchase as a result of this process.
The reviews and the data associated with them will remain online until the content to which they relate has been completely deleted. Bauerfeind reserves the right to immediately delete comments containing illegal or offensive content.
We process the data you provide when using the review function on the basis of our legitimate interest (Article 6 (1) f GDPR). We are very interested in making genuine product reviews available to users of our products. Any data is always entered voluntarily by the user themselves.
3.1. Collection of data by embedded video services
Vimeo
Our website uses plugins from the video portal Vimeo. The provider is Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.
We use the services of this company in order to display videos about our products and our company on our website in an appealing and professional manner. The integration of Vimeo videos occurs due to our legitimate interest in presenting an appealing image on our website (Article 6 (1)(f) GDPR).
The integration of videos could result – for reasons of technical necessity – in calling on Vimeo servers that may be located in third-party countries with a lower level of data protection. Vimeo is independently responsible for the associated use of data from your browser or device in this context.
To guarantee compliance with data protection requirements when transmitting data to the USA and other countries outside the European Union or the European Economic Area, we have established EU standard contract clauses with Vimeo. In addition, videos from Vimeo are embedded in their "Do Not Track" version as a rule so that personal data is only transmitted to Vimeo to a minimal extent. Vimeo has also committed to continue complying with its previous obligations from the former Privacy Shield Agreement.
Further information about how Vimeo processes your data can be found in Vimeo’s Privacy Policy, which is available at https://vimeo.com/privacy.
YouTube
Our website uses plugins from the video portal YouTube. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
We use the services of this company in order to display videos about our products and our company on our website in an appealing and professional manner. The integration of YouTube videos occurs based on our legitimate interest in presenting an appealing image on our website (Article 6 (1) f GDPR). To this end, we have concluded a processing agreement with Google in which we require Google to handle personal data in compliance with data protection regulations and only based on our instructions. You can find detailed information here: https://www.youtube.com/t/terms_dataprocessing
The integration of videos could result – for reasons of technical necessity – in calling on Google servers that may be located in third-party countries outside the EU and EEA with a lower level of data protection. Google is independently responsible for the transmission and processing of data from your browser or device in this context. To keep data transmission to a minimum, we embed all YouTube videos using the "Privacy-Enhanced Mode". As a result, data is only sent to Google if you actively click the video in order to play it.
Further information about how your user data is handled can be found in YouTube’s Privacy Policy, which is available at https://policies.google.com/privacy.
3.2. Collection of data by the services of Google
General information
This website uses various services offered by the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The use of these individual services is described in more detail below.
The services we implement regularly collect various data from you, the devices you use and the websites you visit. This includes usage data (such as websites visited, interest in content, access times) as well as meta-data and communication data (such as device information, IP addresses).
Our use of the following services and the associated collection of personal data (in particular IP addresses) is generally based on our legitimate interest in analyzing, improving and making our website content appear attractive to you as a user as well as on our legitimate interest in tailoring any advertising to your needs. Where necessary, we will obtain your consent to the use of these services in advance.
Google Analytics 4
We use Google Analytics 4 to measure and analyse the use of our website based on a pseudonymous user identification number. This identification number does not contain any unique data such as names or e-mail addresses. It is used to attribute analytical information to a device in order to identify which content the user accessed during one or more visits, which search terms they used, accessed repeatedly or interacted with our website. The time of the visit and its duration are also saved, along with the user’s sources that link to our website and technical aspects of the device and browser. In the process, pseudonymous profiles are created for users with information concerning the use of various devices; cookies may be stored in this process.
Location data
In Google Analytics 4, data is provided about the geographical location at a higher level by recording the following metadata based on the IP search:
“Town” (and the corresponding latitude and longitude of the town),
“Continent”,
“Country”,
“Region”,
“Subcontinent” (and the ID-based equivalents).
EU data processing and IP anonymization
To ensure the protection of user data in the EU, Google records and processes all user data about domains and servers within the EU. The user’s IP address will not be logged and is truncated by the last two digits by default. The IP address is truncated on EU servers for EU users. Furthermore, all sensitive data that is collected by users in the EU is erased before it is recorded on EU domains and servers.
The processing of data on our behalf
We have concluded a data processing agreement for our use of Google Analytics and fully comply with the strict provisions of German data protection authorities when using this service. Additionally, standard contractual clauses have been established with the provider regarding the use of the service that are intended to help ensure a more appropriate level of data protection. The data processing agreement and standard contractual clauses can be accessed here: https://business.safety.google/adsprocessorterms/.
Google Analytics Remarketing Audiences & Google Signals
By using "Google Analytics Remarketing Audiences," we pursue the goal of showing you interest-based, personalized advertising that matches your browsing and usage behavior on our website. For example, we collect information about which products you have viewed or added to your shopping basket and also transmit this data to Google Ads and, if applicable, to the Google Marketing Platform (formerly "DoubleClick").
By using "Google Signals," we also pursue the goal of being able to show you our personalized advertising regardless of the browser or terminal device you are using. For this purpose, Google links your web and app browser history to your Google account. The prerequisite for this is that you are logged into your Google account and have given Google the appropriate consent.
The data collected is linked to your Google account exclusively on the basis of your consent, which you can give or withdraw from Google (Article 6 (1) a GDPR). The collection of data that is not merged into your Google account (for example, because you do not have a Google account or have withdrawn your consent for this data to be linked) is based on the consent you have granted to us via our cookie consent banner. If you refuse the use of cookies, we will not send any data to Google in this context. You can find more information, including on withdrawal of consent, in the "Cookies" section.
You can permanently turn off cross-device remarketing/targeting by deactivating personalized advertising in your Google account by following this link: https://adssettings.google.com/authenticated.
We use conversion tracking as part of Google Ads (previously Google AdWords). If you click an ad placed by Google and have accordingly consented to us placing cookies through our consent banner, a cookie will be installed for conversion tracking. This cookie expires after 90 days and is not used to personally identify users. If you visit certain pages on this website before the cookie has expired, Google and we can detect that you clicked on the advert and were forwarded to this page.
Each Google Ads customer receives a different cookie. This means that cookies cannot be tracked across the websites of Google Ads customers. The information obtained with the help of the conversion cookie is used to create conversion statistics for Google Ads customers who have decided to make use of conversion tracking. This process informs customers of the total number of users who have clicked on their advert and who have been forwarded to a page with a conversion tracking tag. Customers do not, however, receive any information that can be used to personally identify users.
We use Google Analytics and Google Ads in consent mode. In this context, Google processes the user's personal data for measurement and marketing purposes, depending on the user's consent, which we request through the embedded consent tool on the first visit to our website. If the user does not provide any form of consent, the services will only collect and save non-personal data. These include:
Functional information (for instance HTTP headers, which are passively added by the browser):
Time stamp
User agent
Reference URL
Aggregated or non-personal data:
Indication as to whether the current page or a previous page in the user's navigation history on the website contains information about ad clicks in the URL (e.g. GCLID/DCLID)
Boolean information about consent status
Random number that is generated when loading the specific page.
If consent only extends to statistical measurement, no personal data concerning the user will be processed for the display of ads or measurement of advertising success (known as “conversion”).
We process your data in consent mode within the scope of your consent (Art. 6 (1)(a) GDPR) or on the basis of our legitimate interest (Art. 6 (1)(f) GDPR) in order to measure and analyze the success of our website and subsequently carry out optimizations.
We participate in the "Google Customer Reviews" program. This program allows us to collect and publish customer reviews from users of our website. Google will ask you whether you want to participate in a Google e-mail survey right after you have made a purchase on our website. If you grant your consent to Google in accordance with Article 6 (1) a GDPR, we will pass on your e-mail address together with information about your order (order number, expected delivery date, GTINs of the products ordered) to Google. You can find details about which information Google Customer Reviews collects at this link https://support.google.com/faqs/answer/7163734.
A few days after receiving your order, you will lastly receive an e-mail from Google Customer Reviews asking you to rate your purchase experience on our website. The rating you provide will then be combined with our other ratings and displayed in our Merchant Center dashboard. In addition, your rating will be used for Google Seller Ratings, which can be accessed by clicking one of our ads in Google Search as well as Google Shopping. You can find more information about Google Seller Ratings within Google Ads at this link https://support.google.com/google-ads/answer/2375474 and Google Seller Ratings within Google Shopping at this link https://support.google.com/merchants/answer/190657.
Cookies are also installed when Google customer reviews are used on our website, provided that you give us your consent for this within our cookie settings query. These cookies are used by Google to collect information related to the Google Customer Reviews program and may contain information about end-user options when handling cookies.
Google reCAPTCHA (hereinafter referred to as "reCAPTCHA") is used to check whether the data entered on our website (e.g. via our contact form) has been inputted by a human or an automated program. To achieve this, reCAPTCHA analyzes various aspects of the behavior of visitors to our website. This analysis begins automatically as soon as a visitor accesses the website. During the analysis process, reCAPTCHA evaluates various pieces of information (e.g. IP address, the length of time the user spends on the website, and the way the user moves their mouse cursor). The data collected during the analysis process is forwarded to Google.
The analysis work performed by reCAPTCHA runs completely in the background and website users are not informed that it is taking place.
The data is processed on the basis of Article 6 (1) f GDPR. The website operator has a legitimate interest in protecting the website from malicious automated spying and spam.
This page uses the Google Maps API. Your IP address needs to be stored in order for you to use Google Maps. This information is generally transmitted to and stored on a Google server in the USA. The operator of this site has no influence over the transmission of this data.
We use Google Maps due to our interest in making our website more attractive and in making it easier for our visitors to find the addresses provided on our website. This constitutes a legitimate interest within the meaning of Article 6 (1) f GDPR.
We participate in the Amazon EU partner program. The provider of this program is Amazon EU S.à.r.l, 5 Rue Plaetis, L-2338 Luxembourg, Luxembourg.
Our website contains Amazon adverts and links to Amazon websites, in particular Amazon.co.uk, Amazon.de, Amazon.fr, Amazon.it and Amazon.es. We earn advertising fees through this program. As part of this process, Amazon creates cookies so that it can track the origins of orders placed on its sites. These cookies allow Amazon to detect that you have clicked on the partner link on our website.
Our website measures conversions using the Meta pixel feature provided by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Facebook").
The Meta pixel allows us to track users’ behavior once they have been forwarded to our website after clicking on a Facebook advert. This enables us to analyze the effectiveness of Facebook adverts for statistical and market research purposes and in order to improve our future marketing activities.
The Meta pixel is only activated after you have granted your consent within our request concerning cookie settings. You may withdraw or modify your selection there at any time with future effect.
The data collected is anonymous to us as the operator of this website and we cannot use it to identify our users. However, the data is stored and processed by Facebook, which means that a connection may be made to your Facebook profile and the data may be used for Facebook’s own advertising purposes in line with the Facebook Data Policy. Facebook uses this data to display adverts both on Facebook and on third-party sites. As a website operator, we have no control over how this data is used.
You can also deactivate the custom audiences remarketing feature in the Ad Settings section at https://www.facebook.com/adpreferences/ad_settings. To do this, you will need to be logged in to Facebook.
If you do not have a Facebook account, you can opt out of behavioral advertising by Facebook by visiting the website of the European Interactive Digital Advertising Alliance at https://www.youronlinechoices.com/uk/your-ad-choices.
Microsoft Universal Event Tracking
We use the "Universal Event Tracking" (UET) conversion and tracking tool by Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland ("Microsoft"), on our website.
UET can be used to track the behavior of site visitors after they have been redirected to our website, for example, by clicking on a Microsoft Advertising ad (formerly Bing Ads). In this way, interest-related, personalized advertising messages can be displayed depending on your previous usage and browsing behavior (such as ads for products). This is referred to as "Remarketing".
Microsoft will link your web and app browser history with your Microsoft account for this purpose, provided that you have given Microsoft your corresponding consent. This means that the same personalized adverts will be displayed to you on any terminal device on which you are logged in to your Microsoft account.
Cookies
To enable tracking, Microsoft UET employs cookies. The cookies can be placed by various domains belonging to the Microsoft search network, including bing.com, aol.com and yahoo.com and the syndicated search partners of Microsoft and Yahoo, which includes MSN. If the user visits certain pages of this website with one of these cookies, Microsoft and we can recognize that the user clicked the ad and was redirected to this page, which content the user is interested in and which offers the user clicked, as well as technical information about the browser and operating system, referring websites, time of visit and other information about the use of the website.
Legal basis of the data processing
We use Microsoft Advertising in conjunction with UET based on your consent to allow cookies for advertising and marketing purposes. You can revoke your consent in the cookie settings at any time for the future.
Purpose of processing
UET gives us the ability to better target ads in the Microsoft Search Network and the Microsoft Audience Network, showing users only ads that potentially match their interests.
Your right to object to the collection of your data
You can permanently turn off cross-device remarketing/targeting by deactivating personalized advertising in your Microsoft account using this link: https://account.microsoft.com/privacy/ad-settings. To do this, you will need to be logged in to Microsoft.
Microsoft may still show you personalized advertising based on your browsing activity if you are not registered or logged in to Microsoft. To object to this personalized advertising, please use this link: https://account.microsoft.com/privacy/ad-settings/signedout. This setting applies only to the browser you used to make these settings.
Further information
More information about the protection of your privacy can be found in Microsoft’s Privacy Policy: https://privacy.microsoft.com/.
Newsletter
The information below provides details about the content of our newsletter. It also explains our subscription and mailing procedures, the methods we use for performing statistical analysis and your right to object. When you subscribe to our newsletter, you are consenting to receive the newsletter and to the procedures described.
Content of the newsletter
We only send the newsletter to recipients who have provided their consent in accordance with Article 6 (1) a GDPR. If, in relation to a subscription to the newsletter, the content of the newsletter is described in specific terms, this will serve as an essential basis for the user providing consent. Our newsletter contains information about our offers and promotions as well as about our company. It may also include information that specifically refers to blog posts, our services, or our online presence.
When you subscribe to our newsletter, the data (e.g. email address) you provide during the registration process will be forwarded to Salesforce and stored there. The service provider is based in the USA. Data are exclusively processed on servers in Frankfurt, Germany. The provider of the server is Amazon Web Services, Inc. ("AWS") 410 Terry Avenue North, Seattle WA 98109, USA. We have concluded a Data Processing Agreement with AWS in which we require AWS through an "AWS GDPR Data Processing Addendum" (Standard Data Protection Clauses, available online at https://d1.awsstatic.com/legal/aws-gdpr/AWS_GDPR_DPA.pdf) to protect our customers’ data and not to disclose it to third parties.
Double opt-in and logging
After you have subscribed to the newsletter, Salesforce will send you an e-mail asking you to confirm your registration (this is the "double opt-in" procedure). This confirmation is required so as to ensure that no one can register using someone else’s e-mail address.
Newsletter registrations are logged as evidence that the registration process complies with legal requirements. This means that the registration and confirmation times as well as the IP address are stored. Changes to your data stored by Salesforce will also be logged.
Registration details
If you wish to subscribe to the newsletter offered on the website, you will need to provide us with an e-mail address and information that will enable us to verify that you own the e-mail address you have given (double opt-in procedure) and that you consent to receiving the newsletter.
We also ask you to provide your name on an optional basis. This information is used solely to personalize the newsletter. You also have the option of providing your date of birth, sports activities, and you can indicate the part of your body for which you wish to boost performance. This information enables us to specially tailor the contents of the newsletter to your interests. You can visit the "Preference Center" at any time to view and correct and/or delete the information that you chose to provide. To do so, simply click the Preference Center link at the end of each newsletter.
Collection and analysis of statistics
Salesforce also helps us to analyze our newsletter campaigns. This enables us to determine whether a newsletter message has been opened, when and from which location it was opened, and, if applicable, which links were used. In this way, we can determine which links are particularly popular, among other things. It is true that it is technically possible for us to attribute this information to the individual recipients of the newsletter. However, neither we nor Salesforce aim to monitor individual users. The analyses are used to identify our users’ reading habits on a group basis and to tailor our content to them, or to send out varying content that relates to our users’ interests.
Salesforce also enables us to further divide the recipients of our newsletter into different categories (e.g. favorite sports). This means that the newsletter can be more tailored to the target groups in each case.
You can prevent this analysis at anytime by unsubscribing from the newsletter. To do so, simply click the corresponding link at the end of each newsletter.
Online access and data management
Newsletter recipients will be directed to Salesforce’s web pages in certain circumstances. For example, our newsletters contain a link that can be used to access the newsletter online (if there are problems viewing the newsletter in an e-mail program, for example). Those who subscribe to the newsletter can also use Salesforce’s web pages to update their data (e.g., the selected types of sports) at a later stage. Furthermore, Salesforce’s Privacy Statement is only available on its website. In this regard, we would like to make you aware of the fact that Salesforce’s web pages use cookies. This means that Salesforce, its partners, and its appointed service providers (for example, Google Analytics) process personal data. We have no influence over the collection of this data. You can find more information in Salesforce’s Privacy Statement. We would also like to draw your attention to the opt-out facilities available at https://optout.aboutads.info/ and https://www.youronlinechoices.com/uk/your-ad-choices (for the European area), where you can prevent the collection of data for advertising purposes.
Legal bases
Consent to sending the newsletter is obtained by us on the basis of Article 6 (1) a GDPR. You can use the "unsubscribe" link in the newsletter to withdraw your consent to the storage of data and the e-mail address at any time, and its use for sending the newsletter. This withdrawal of consent will not affect the legality of the data processing that has already taken place.
Unsubscribing/withdrawal of consent
You can unsubscribe from our newsletter at any time. This means that you have withdrawn your consent. You will find the link to unsubscribe from the newsletter at the bottom of each newsletter. After unsubscribing, your e-mail address will be stored on a blocking list and will only be used to ensure that we no longer send e-mails to your e-mail address. Your email address is stored in the blacklist on the basis of Article 6 (1) f GDPR. Our legitimate interest lies in compliance with the statutory regulations for newsletter mailing. Your email address will be stored in the blacklist for an unlimited time or until you object. You have the right to object to this storage at anytime insofar as your interests outweigh our legitimate interest.
When purchasing goods in our online shop, you will be requested to enter personal data. This is necessary to fulfil the obligations arising from the contract concluded between you and us (pursuant to Art. 6 (1)(b) GDPR), for instance in order to manage the settlement of the due payment.
In this process, it is mandatory to provide the data requested based on the specific payment method. If you do not wish to disclose your personal data, the purchase agreement cannot be fulfilled.
If your personal data are collected and processed above and beyond the required extent, you will be asked for your explicit consent to this end (pursuant to Art. 6 (1)(a) GDPR).
Collected data
The data you are required to provide for payment processing generally involves the following information:
First name, last name, address, date of birth, gender
Email address, IP address, phone number
Payment information (e.g. bank account details, card number, validity date, CVC code)
Data about the goods and services as well as prices
Please note that the data which must be provided may vary depending on the selected payment method.
Service providers engaged
In order to offer you secure and comfortable payment options when purchasing our products in our online shop, we have engaged the full payment service provider Novalnet AG, Feringastraße 4, 85774 Unterföhring.
Novalnet processes and saves the data you enter during payment processing and forwards these to other service providers such as PayPal, MasterCard or Visa. Bauerfeind itself has no access to account or credit card-related information, and only receives information from Novalnet concerning the payment status of your order. If necessary, Novalnet may forward your data to credit agencies for an identity and credit check. If you wish to assert your rights to information, rectification, erasure, withdrawal etc., you can contact Novalnet directly. In this regard, please also note Novalnet’s Privacy Policy at https://www.novalnet.com/privacy-policy/.
Duration of storage
The website operator saves your data for the order process as long as is necessary for the indicated purposes and any retention periods apply, for example owing to tax law. You can find information concerning the duration of storage of your data by Novalnet from the service provider’s current valid Privacy Policy.
3.5. Address validation
Verification of information entered in address forms
Purpose of processing and legal basis
In the address forms on our website, we automatically check the information you enter in real time regarding its accuracy and plausibility. The objective is to identify and correct erroneous entries in order to prevent problems with the delivery of the products you have ordered during the rest of the order process. Our legitimate interest (in accordance with Article 6 (1) f GDPR) particularly encompasses the smooth handling of your order to your satisfaction.
Collected data
The following data are processed in this context:
Address (country, city, postcode, street, building number if relevant)
Service provider engaged
In order to provide this function, we engage the service provider Endereco, Balthasar-Neumann-Straße 4b, 97236 Randersacker, Germany. This service provider processes the data based on a data processing agreement (pursuant to Art. 28 GDPR) exclusively in line without instructions to protect our customers’ data and not to forward the data to unauthorized third parties.
Duration of storage
The data are processed separately by the service provider and will not be aggregated with other data from other sources. Inquiries will be erased by the service provider as soon as the status of the provided data has been determined and their storage in the online shop has concluded, however after no more than 30 days.
3.6. Use of Webfonts
Web Fonts by Linotype
To ensure that fonts are displayed consistently, this website uses web fonts provided by Linotype, that is, the company Monotype GmbH, Spichernstraße 2, 10777 Berlin.
When you open a web page, your browser loads the required web fonts into your browser cache so that text and fonts are displayed correctly. The web fonts are provided through our server. Website visits are counted by Linotype using a tracking code since this is required for licensing the fonts. For this to work, your browser needs to be connected to Linotype’s servers. This informs Linotype that our website was accessed via your IP address. We use Linotype web fonts due to our interest in providing a uniform and attractive website. This constitutes a legitimate interest within the meaning of Art. 6 (1) f GDPR.
If your browser does not support web fonts, your computer will use a standard font instead.
