PRIVACY NOTICE
We attach great importance to the protection of your personal data. It goes without saying that we comply with the legal provisions of the General Data Protection Regulation (GDPR) and any applicable national privacy policy. Below you will find information on how we implement data protection in our online store.
1. Purpose of data protection
The subject of protection concerns personal data. It includes so-called basic data such as your name, postal address, email address and telephone number as well as information relating to your account, but also usage data, such as the time of your visit to our site, the browser you used and other data generated by your visit to our site. Also included is information about the contents of your shopping carts, your orders and other personal information and requests.
We collect, store and use your personal data only to fulfill your order or the service you have requested, on the basis of legal authorization and within the framework of any consent you may have given us separately. When authorization from you is required, you will see it highlighted below. You can revoke your consent for the future at any time. The resulting consequences are specified below in each declaration of consent.
2. Data security
You can communicate your personal data to us with complete confidence. All communication via the online store is transmitted to us encrypted. We secure the online store and your data by implementing technical and organizational measures against damage, destruction, alteration or access by unauthorized persons. Despite regular checks, it is nevertheless impossible to guarantee flawless protection against all risks.
If you register as a customer with us, access to your account is only possible after entering your personal password. If you do not deactivate the “Stay logged in” option, you remain logged in for usual functions, particularly for viewing data related to your account.
If you share your computer with someone else or if other people use your computer (for example, public computers, such as in a library or internet cafe), we recommend that you log out if you can no longer use or monitor the computer. If you decide to unsubscribe, we invite you to re-register no later than 365 days after your last activity.
We also take data protection within the company very seriously. Our employees and the service providers we work with have committed to us to respect the obligation of confidentiality and the provisions relating to data protection.
3. Usage Data
For a simple visit to our site, it is not necessary for you to provide us with personal data. We only store and subsequently use access data without personal reference, such as browser type, screen resolution, operating system, page from which you visit us, user ID. 'an advertising medium through which you visit the online store, the type of device with which you visit the online store (PC, smartphone, etc.), the date and time of your visit, the pages you viewed, the items you viewed and how you interacted with the online store or the name of the requested file. This data is evaluated to improve our offer and does not allow you to be identified.
In addition, we store the IP address provided by your browser for 15 days when used strictly for the specified purposes, for traceability for technical analysis purposes, and for 90 days if errors technical problems occurred during the requests or if the requests were blocked by security rules. The purpose of this storage is to recognize, limit and eliminate errors or attacks. At the end of this period, we delete or anonymize the IP address. The legal basis is Article 6 (1) first sentence (f) of the GDPR.
4. Data processing in connection with purchasing or other actions
When you register as a customer, make purchases in our online store or want to use other services, we need your personal data. This is the case, for example, for processing the purchase contract and shipping the goods, sending requested information material or responding to individual inquiries regarding our offers and products. We collect, store and use your personal data required for this purpose only to the extent that this is necessary for the execution of the contract or the provision of the service, on the basis of legal authorization or by virtue of your consent expressly for the further use of your data. We store and use the personal data that you provide to us in the context of your order, on the basis of Article 6(1)(b) of the GDPR for the processing of your orders or for the implementation conditions of use. You decide how you use our online store.
When you register in the online store, we store the data required for this on the basis of Article 6(1)(b) GDPR until you terminate the usage relationship. . You can modify or delete your profile in your account at any time (end of the usage relationship). The data is then deleted from our system provided that there is no retention period or if the data does not continue to be required in certain cases (e.g. warranty follow-up).
We retain and delete personal data in accordance with the retention periods defined by tax and commercial legislation as soon as the data is no longer required for the purposes of its intended use.
Once an order has been placed, we use your name, address and customer number for sending mailings. The legal basis is Article 6(1)(f) of the GDPR. We also use your email address to send you relevant marketing information for a maximum period of one year following your last purchase. If you do not wish to receive advertising, you can notify us in writing, by telephone or by email.
5. Payment data
In the case of payment by credit card, the data is processed by the Stripe payment platform. The principle applied for this purpose is to communicate the following data to Stripe: merchant ID, transaction ID, cart amount, order number and currency. To do this, specific steps and data are involved depending on the payment method.
Stripe is a leading secure payment service provider that is PCI security compliant so you can pay securely online.
To avoid having to re-enter your bank card details the next time you make a purchase that you want to pay by card, we offer you an additional service consisting of saving your card details. In order to offer you, here too, maximum security for your bank card data, we do not save the data ourselves, but we have it saved in encrypted form by Stripe.
When you pay with us by credit card, you consent to your card data (card type, cardholder name, card number and validity period, but not the check digit) being stored in encrypted form by Stripe for a period of 36 months, in order to facilitate your purchases in our online store by selecting the registered credit card. You can revoke your consent for the future at any time by sending us a written statement by post or e-mail. In this case, each time you make a purchase, you must re-enter the bank card data manually.
6. Transmission of data to third parties
As part of subcontracting as provided for in Article 28 of the GDPR, we transfer your data to service providers who support us in the operation of our website and related processes. Our service providers are strictly bound by our instructions and bound by contract to this effect. We use the services of the following providers:
- hosting service
- application development service
- web analytics provider, tracking, remarketing
- newsletter service
- warehouse manager
- call center
- shipping service
- payment service
These service providers only have the right to use your data for order processing and not for other purposes. Transmission to public institutions and authorities authorized to receive information is only carried out within the framework of legal information obligations.
You agree that we communicate your email address to the carrier and used in connection with the delivery of the package to inform you of the delivery of your order.
7. Data transfer to third countries
We sometimes transfer personal data to a third country outside the EU (e.g. Google, Facebook). For each of these cases, we have ensured an appropriate level of data protection. The scope of data processing and the measures taken to ensure an adequate level of data protection are described under the section concerning the respective service.
8. Contact form / Services and online ordering
You can contact us via a web form or by telephone. To be able to associate your request with your customer account and answer any questions you may have, we need your name and email address. You may provide other information, but you are not required to do so. The legal basis for the processing is Article 6(1)(b) of the GDPR. We use your data exclusively to process your request and fulfill the order.
9. Our own and third party cookies
We use cookies, which are small text files that your browser stores on your end device (computer, mobile phone or similar). The cookie itself does not contain or collect any personal information about you or your internet usage. Cookies are, however, important, for example to analyze the behavior of visitors to our website or to display personalized offers or to keep registered users logged in for the duration of their visit. Cookies, for example, also allow the website to “remember” you, either for the duration of your current visit (“session cookie”) or for multiple visits (“persistent cookie”). They are primarily intended to enable more efficient use of our website and to enable certain functions on the site.
Without your consent, we are only allowed to set cookies that are necessary for the website to function (so-called “necessary cookies”). Necessary cookies are, for example, cookies that are used to store the shopping cart or to enable and maintain the connection and other functionalities required for the order (the legal basis for these cookies is then Art. 6 para. 1 letter b of the GDPR) or to ensure the security of the system (the legal basis for the use of these cookies is art. 6 al.1 letter f of the GDPR). You can object to the processing on the basis of Art. 6 para. 1 letter f of the GDPR.
Non-essential cookies are only installed if you have given us your prior consent. You can give us this consent by clicking on the “Accept all cookies” button in the “cookie banner” displayed on our website.
The legal basis for the use of cookies is therefore Art. 6 al.1 letter a of the GDPR.
You can find detailed information about all cookies (necessary and those used based on your consent) in our Privacy Preference Center. You will also find detailed descriptions of the various cookie-based functions under section 10 of this data protection declaration.
You can revoke your consent at any time in our Data Protection Preference Center. You also have the option to change your cookie settings again at any time.
How can you control the receipt of cookies?
In addition to the selection in the cookie banner and the settings in our Cookie Preference Center, you can also control cookies through your browser settings. Most Internet browsers automatically accept cookies. You can prevent cookies from being stored on your computer or mobile phone by configuring your browser so that it does not accept cookies. You can find exact instructions on how to change your cookie settings in the “Help” section of your browser. You can also configure your browser to inform you about the placement of cookies. This makes the use of cookies transparent for you. If you do not want us to recognize your computer, you can prevent cookies from being saved on your hard drive via your browser settings. You can also delete cookies that are already stored on your end device at any time.
You can find further useful information about this on the information page allaboutcookies.org. For further details, please also consult your browser instructions.
If you decide not to agree to cookies that require consent, you can of course continue to visit our website anyway. However, you may not be able to use all the features and services we offer, or some content may not be available.
10. Tracking / Advertising Retargeting / Remarketing / Targeted Advertising
We may commission external service providers to offer you advertisements for our products on our partners' sites. In this context, advertising targeting techniques of the commissioned companies are used, which, using cookies, collect completely anonymized data regarding the pages, categories or products you view. We can therefore adapt advertisements to the interest you show in our online store or in our products. At no time will personal data be transmitted to third parties. Neither external companies nor we can establish a relationship with you or your personal data. Nor can any link be established with the information you provided when ordering. We use the data collected exclusively to optimize the display of our advertising campaigns.
10.1. Google Analytics
We use Google Analytics, a web analysis service provided by Google Inc. (“Google”) to configure and optimize this site as needed. Google Analytics uses “cookies”, text files which are stored on your computer and which allow us to analyze your use of the site. Data processing takes place on the basis of Article 6 (1) (f) GDPR and aims to know how often our websites have been visited by different users. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the United States and stored there. However, because we have activated IP anonymization on this website, your IP address is previously abbreviated by Google within member states of the European Union. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there (an adequate level of data protection as provided for in Article 45(1) , GDPR is provided by Google's participation in Privacy Shield). We have also concluded a subcontracting contract with Google Inc. (USA) in accordance with Article 28 of the GDPR. Google will therefore use this information for the strictly defined purpose of evaluating the use of our website for us and compiling reports on website activities.
You can object to the processing at any time. To do this, simply use one of the following options:
- You can prevent the storage of cookies by setting your browser software accordingly. However, we draw your attention to the fact that, in this case, you may not be able to use all the functions of this site in their entirety.
- You can also prevent Google from collecting and processing the data generated by the cookie and related to your use of the website (including your IP address) by downloading and installing the browser add-on available at https://tools.google.com/dlpage/gaoptout?hl=en
10.2. Google Adwords Conversion Tracking
Our site uses Google Adwords conversion tracking, a web analytics service provided by Google Inc. (“Google”) whose purpose is to improve the website and advertising activities. The conversion tracking cookie is set when a user clicks on an ad placed by Google. These cookies lose their validity after thirty days and are not used for personal identification. If you visit certain pages on our site within thirty days, we and Google in the USA can see that you clicked on the ad and were redirected to this page. Each Google AdWords customer receives a different cookie. Cookies cannot therefore be tracked via AdWords customer websites. The information obtained using the conversion cookie is used to generate conversion statistics for us. We thus know the total number of users who clicked on our ad and who were redirected to our site. But we do not receive information that identifies you personally. Data processing is carried out on the basis of Article 6(1)(f) of the GDPR.
You have the option to set advertising settings. You can object to this form of advertising at any time. To do this, go to https://support.google.com/ads/answer/2662922?hl=en and deactivate personalized advertising. We draw your attention to the fact that these settings may not work on all devices and browsers. For further information, see also https://support.google.com/ads/answer/2662922?hl=en.
10.3. Remarketing Google Adwords
When you visit our site, Google may open recognition criteria for your browser or device (e.g. by creating a browser fingerprint), evaluate your IP address or save a recognition function as a small file text on your device (a third-party cookie, for example). It is also possible that Google combines your visit to our site with one or more of these recognition criteria and records it in order to be able to present our advertising to you on other websites.
The recognition criteria described above are configured as pseudonyms and can be used by Google to recognize your device on other websites.
If, for example, you visit a page that is part of the Google Display advertising network (i.e. displays ads on behalf of Google), Google may recognize your device and browser using the criteria described above. We may also add “remarketing tags” to our site. This means that we may include keywords on our websites that make statements about the content of the displayed page (for example, categories of products or services). The keywords we use do not carry any personal or sensitive information. Google receives and stores these keywords by adding them to the recognition criteria mentioned above. So, when you visit a page associated by keyword with a specific product category, Google stores this keyword and associates it with your recognition criteria. In doing so, we can instruct Google to display advertising on other sites based on the visits our pages receive. If you visit another website participating in the Google Display Network, Google can tell you, using the recognition criteria and the keywords stored with these criteria, whether our advertising should be displayed to you and, if so, which one precisely.
For more information on how Google's remarketing technology works, see: https://policies.google.com/technologies/ads?hl=en.
The processing is carried out on the basis of our legitimate interests in the optimal marketing of our website, in accordance with Article 6(1)(f) of the GDPR.
You have the option to set parameters for advertising. You can object to this form of advertising at any time by going to https://support.google.com/ads/answer/2662922?hl=en and deactivating personalized ads. We draw your attention to the fact that these settings may not work on all devices and browsers. Further information can be found at https://support.google.com/ads/answer/2662922?hl=en.
11. Storage duration
The data is deleted provided that there is no longer a legal retention period (e.g. from commercial and tax law) or the data is not required for the execution of the contract or there is no legitimate interest in data processing (e.g. registration management, sending newsletters).
12. Your rights as a user
Regarding the processing of your personal data, the GDPR gives you certain rights as a user of websites.
Right of access (article 15 of the DGPD):
You have the right to obtain confirmation that personal data concerning you are being processed; if this is the case, you have a right to information about this personal data and the information contained in detail in Article 15 of the GDPR.
Right of rectification and right to erasure (“right to be forgotten”) (articles 16 and 17 of the GDPR):
You have the right to obtain, as soon as possible, the rectification of inaccurate personal data concerning you and you have the right to obtain, where applicable, that incomplete personal data be completed. You also have the right to obtain the erasure, as soon as possible, of personal data concerning you when one of the reasons listed in detail in Article 17 of the GDPR applies, for example when the data is no longer necessary for the purposes pursued.
Right to restriction of processing (article 18 of the GDPR):
You have the right to obtain restriction of processing where one of the elements listed in Article 18 of the GDPR applies, for example for the duration of any verification, if you have objected to the processing.
Right to data portability (article 20 of the GDPR):
In certain cases listed in detail in Article 20 of the GDPR, you have the right to receive personal data concerning you, in a structured, commonly used and machine-readable format, or to have this data transmitted to a third.
Right to object (article 21 of the GDPR):
Where data is collected on the basis of Article 6(1)(f) GDPR (data processing for the purposes of legitimate interests), you have the right to object at any time, for reasons relating to to your particular situation, to the processing of personal data. In this case, we will no longer process the personal data, unless we demonstrate that there are compelling legitimate grounds for the processing which override the interests and rights and freedoms of the data subject, or for the establishment, exercise or defense of legal rights.
Right to lodge a complaint with a supervisory authority:
In accordance with Article 77 of the GDPR, you have the right to lodge a complaint with a supervisory authority, if you consider that the processing of personal data concerning you constitutes a violation of data protection provisions. . The right to lodge a complaint can be exercised with a supervisory authority in the Member State in which your habitual residence is located, your place of work or the place where the violation is alleged to have been committed.
13. Contact information / Data Protection Officer
For any questions, information or other requests, please contact info@equuswatches.ch