Privacy Policy

Datenschutzerklärung

Preamble

With the following privacy policy, we aim to inform you about the types of your personal data (hereinafter also referred to as “data”) that we process, for what purposes, and to what extent. The privacy policy applies to all processing of personal data carried out by us, both in the provision of our services and especially on our websites, mobile applications, and external online presences, such as our social media profiles (hereinafter collectively referred to as the “Online Offering”).

The terms used are not gender-specific.

Date: March 3, 2024

 

Table of Contents

Data Controller

Tatjana Greissinger / Scandinavian Chic
Staedtlerstr. 11
91126 Schwabach
Germany

E-Mail-Adresse: business@scandinavian-chic.com
Telefon: +49 160 96448261

Impint: https://www.scandinavian-chic.com/imprint

Overview of Processing Activities

The following overview summarizes the types of processed data and the purposes of their processing, and refers to the affected individuals.

Types of Processed Data

  • Processed Data
  • Content data.
  • Contact data.
  • Contract data.
  • Usage data.
  • Meta-, communication, and procedural data.

Categories of Data Subjects

  • Users.

Purposes of Processing

  • Provision of contractual services and fulfillment of contractual obligations.
  • Contact inquiries and communication.
  • Security measures.
  • Reach measurement.
  • Tracking.
  • Affiliate tracking.
  • Feedback.
  • Marketing.
  • Profiles with user-related information.
  • Provision of our Online Offering and User-Friendliness.
  • Information technology infrastructure.

Relevant Legal Bases

Relevant legal bases according to the GDPR: Below is an overview of the legal bases of the GDPR on which we process personal data. Please note that in addition to the provisions of the GDPR, national data protection regulations may apply in your or our country of residence or establishment. If more specific legal bases are applicable in individual cases, we will inform you in the privacy policy.

  • Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR) – The data subject has given consent to the processing of their personal data for a specific purpose or purposes.
  • Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR) – Processing is necessary for the purposes of the legitimate interests pursued by the data controller or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject, which require protection of personal data.

National Data Protection Regulations in Germany: In addition to the data protection regulations of the General Data Protection Regulation (GDPR), there are national data protection regulations in Germany. This includes, in particular, the Law for the Protection against Misuse of Personal Data in Data Processing (Federal Data Protection Act – BDSG). The BDSG contains special regulations regarding the right to information, the right to deletion, the right to object, the processing of special categories of personal data, processing for other purposes, and transmission, as well as automated decision-making in individual cases, including profiling. Furthermore, state data protection laws of individual federal states may also apply.

Note on the Applicability of GDPR and Swiss DPA: These privacy notices serve to inform according to the Swiss Federal Data Protection Act (Swiss DPA) as well as the General Data Protection Regulation (GDPR). For this reason, please note that, due to broader spatial application and understanding, the terms of the GDPR are used. Specifically, instead of the terms used in the Swiss DPA such as “processing” of “personal data,” “predominant interest,” and “particularly sensitive personal data,” the terms used in the GDPR such as “processing” of “personal data,” “legitimate interest,” and “special categories of data” are used. However, the legal meaning of the terms continues to be determined under the Swiss DPA.

International Data Transfers

Data Processing in Third Countries: If we process data in a third country (i.e., outside the European Union (EU) or the European Economic Area (EEA)), or if processing occurs as part of using third-party services or disclosing/transferring data to other individuals, entities, or companies, this is done in accordance with legal requirements. If the data protection level in the third country has been recognized through an adequacy decision (Art. 45 GDPR), this serves as the basis for data transfer. Otherwise, data transfers only occur if the data protection level is otherwise secured, particularly through standard contractual clauses (Art. 46(2)(c) GDPR), explicit consent, or in the case of contractual or legally required transfers (Art. 49(1) GDPR). Additionally, we will inform you about the basis for third-country transfers with individual providers from the third country, with adequacy decisions being the primary basis. Information on third-country transfers and existing adequacy decisions can be found on the EU Commission’s website: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection_en?prefLang=en.

EU-US Trans-Atlantic Data Privacy Framework: As part of the “Data Privacy Framework” (DPF), the EU Commission has also recognized the data protection level for certain companies in the USA as secure under the adequacy decision of July 10, 2023. The list of certified companies and further information on the DPF can be found on the website of the US Department of Commerce at https://www.dataprivacyframework.gov/. We will inform you in the context of the privacy notices which service providers certified under the Data Privacy Framework we use.

Rights of Data Subjects

Rights of Data Subjects under the GDPR: As data subjects, you have various rights under the GDPR, particularly arising from Articles 15 to 21 of the GDPR:

  • Right to Object: You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you based on Article 6(1)(e) or (f) GDPR, including profiling based on those provisions. If personal data concerning you is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing, including profiling related to such direct marketing.
  • Right to Withdraw Consent: You have the right to withdraw your consent at any time.
  • Right to Information: You have the right to obtain confirmation as to whether or not personal data concerning you is being processed, and, where that is the case, access to the personal data and additional information as per legal requirements.
  • Right to Rectification: You have the right, in accordance with legal requirements, to request the completion of your personal data or the correction of inaccurate personal data concerning you.
  • Right to Erasure and Restriction of Processing: You have the right, in accordance with legal requirements, to request the immediate erasure of personal data concerning you, or alternatively, the restriction of processing of the data.
  • Right to Data Portability: You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used, and machine-readable format, or to have this data transmitted to another controller, in accordance with legal requirements.
  • Complaint to Supervisory Authority: Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular, in the Member State of your habitual residence, place of work, or the place of the alleged infringement if you believe that the processing of personal data concerning you violates the provisions of the GDPR.

Use of Cookies

Cookies are small text files or other storage markers that store information on end devices and read information from end devices. For example, they may store login status in a user account, shopping cart contents in an online shop, accessed content, or functions used in an online service. Cookies can also be used for various purposes, such as functionality, security, and convenience of online services, as well as for analyzing visitor traffic.

Consent Information: We use cookies in accordance with legal regulations. Therefore, we obtain prior consent from users, unless legally not required. Consent is not necessary when storing and reading information, including cookies, is essential to provide users with a telemedia service (our online offering) expressly requested by them. Essential cookies typically include functions related to displaying and running the online service, load balancing, security, storing user preferences and choices, or similar purposes associated with providing the main and ancillary functions of the requested online service. Revocable consent is clearly communicated to users and includes information about the respective cookie usage.

Data Protection Legal Bases: The legal basis for processing users’ personal data through cookies depends on whether we request user consent. If users consent, the legal basis for processing their data is the declared consent. Otherwise, data processed using cookies is based on our legitimate interests (e.g., in the economic operation of our online service and improving its usability) or, if within the fulfillment of our contractual obligations, when the use of cookies is necessary to fulfill our contractual obligations. The purposes for which we process cookies are explained in this privacy policy or within our consent and processing processes.

Storage Duration: Regarding storage duration, the following types of cookies are distinguished:

  • Temporary Cookies (also: Session Cookies): Temporary cookies are deleted at the latest after a user leaves an online service and closes their device (e.g., browser or mobile application).
  • Persistent Cookies: Persistent cookies remain stored even after closing the device. For example, login status can be saved or preferred content can be directly displayed when the user revisits a website. Data collected through cookies can also be used for reach measurement. If we do not provide explicit information about the type and storage duration of cookies (e.g., during consent), users should assume that cookies are persistent and can be stored for up to two years.

General Notes on Revocation and Objection (Opt-Out): Users can revoke their given consent at any time and object to processing in accordance with legal requirements. Users can, for example, restrict the use of cookies in their browser settings (though this may also limit the functionality of our online service). Objection to the use of cookies for online marketing purposes can also be declared on the websites https://optout.aboutads.info and https://www.youronlinechoices.com/.

Legal Bases: Legitimate Interests (Art. 6(1) lit. f) GDPR), Consent (Art. 6(1) lit. a) GDPR).

Further Information on Processing Processes, Procedures, and Services:

Processing of Cookie Data Based on Consent: We use a consent management solution where users’ consent for the use of cookies or for procedures and providers mentioned within the consent management solution is obtained. This process aims to collect, log, manage, and revoke consents, particularly regarding the use of cookies and similar technologies used for storing, reading, and processing information on users’ devices. In this process, user consents for the use of cookies and related information processing, including specific processes and providers mentioned in the consent management process, are obtained. Users also have the option to manage and revoke their consents. Consent declarations are stored to avoid repeated queries and to provide evidence of consent in accordance with legal requirements. Storage occurs server-side and/or in a cookie (called Opt-In Cookie) or similar technologies to associate the consent with a specific user or device. If specific information about providers of consent management services is not available, the following general notes apply: The storage duration of consent is up to two years. A pseudonymous user identifier is created, along with the time of consent, details about the scope of consent (e.g., relevant categories of cookies and/or service providers), and information about the browser, system, and device used; Legal Basis: Consent (Art. 6(1) lit. a) GDPR).

Provision of Online Services and Web Hosting

We process user data to provide them with our online services. For this purpose, we process the user’s IP address, which is necessary to transmit the contents and functions of our online services to the user’s browser or device.

  • Processed Data Types: Usage Data (e.g., visited web pages, interest in content, access times); Meta, Communication, and Process Data (e.g., IP addresses, timestamps, identification numbers, consent status).
  • Affected Individuals: Users (e.g., website visitors, users of online services).
  • Affected Individuals: Users (e.g., website visitors, users of online services).
    Purposes of Processing: Providing our online service and user-friendliness; Information technology infrastructure (operation and provision of information systems and technical devices (computers, servers, etc.)). Security measures.
  • Legal Bases: Legitimate Interests (Art. 6(1) lit. f) GDPR).

Additional information on processing procedures, methods, and services:

  • Provision of Online Content on Rented Storage Space: To provide our online content, we utilize storage space, computing capacity, and software obtained from a server provider (also referred to as “web hoster”);
    Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
  • Collection of Access Data and Log Files: Access to our online content is logged in the form of “server log files.” Server log files may include the address and name of accessed web pages and files, date and time of access, transmitted data volumes, notification of successful access, browser type and version, user’s operating system, referrer URL (previously visited page), and usually IP addresses and the requesting provider. Server log files may be used for security purposes, such as preventing server overload (especially in the case of malicious attacks, known as DDoS attacks), and ensuring server utilization and stability; Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR). Data Deletion: Log file information is stored for a maximum of 30 days and then deleted or anonymized. Data that needs to be retained for evidentiary purposes is exempt from deletion until the final resolution of the respective incident.
  • STRATO: Services related to the provision of information technology infrastructure and associated services (e.g., storage space and/or computing capacities); Service provider: STRATO AG, Pascalstraße 10,10587 Berlin, Germany; Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://www.strato.de; Data protection declaration: https://www.strato.de/datenschutz/. Data processing agreement: Provided by the service provider.

Blogs and Publishing Media:

We use blogs or similar means of online communication and publication (hereinafter referred to as “publication medium”). Reader data is processed for the purposes of the publication medium only to the extent necessary for its display, communication between authors and readers, or for security reasons. For further information on the processing of visitors to our publication medium, refer to the information in this data protection notice.

  • Processed Data Types: Master data (e.g., names, addresses); Contact data (e.g., email, phone numbers); Content data (e.g., entries in online forms); Usage data (e.g., visited websites, interest in content, access times); Meta-, communication, and process data (e.g., IP addresses, time information, identification numbers, consent status).
  • Affected Persons: Users (e.g., website visitors, users of online services).
  • Purposes of Processing: Provision of contractual services and fulfillment of contractual obligations; Feedback (e.g., collecting feedback via online form). Provision of our online content and user-friendliness.
  • Legal Basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Additional information on processing procedures, methods, and services:

    1. Retrieval of WordPress Emojis and Smilies: Within our WordPress blog, graphical emojis (or smilies), i.e., small graphic files expressing emotions, are retrieved from external servers for the efficient integration of content elements. The providers of these servers collect users’ IP addresses to transmit the emoji files to users’ browsers; Service provider: Automattic A8C Ireland Ltd., Grand Canal Dock, 25 Herbert Pl, Dublin, D02 AY86, Ireland; Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://automattic.com; Privacy policy: https://automattic.com/privacy. Basis for third-country transfers: Data Privacy Framework (DPF).

Onlinemarketing

We process personal data for the purpose of online marketing, including the promotion of advertising spaces or the display of advertising and other content (collectively referred to as “content”) based on potential user interests, as well as measuring their effectiveness.

For these purposes, user profiles are created and stored in a file (referred to as a “cookie”) or similar methods are used to store information relevant to the user for displaying the aforementioned content. This information may include viewed content, visited websites, used online networks, as well as communication partners and technical details such as the browser used, the computer system used, and information about usage times and functions. If users have consented to the collection of their location data, this information may also be processed.

IP addresses of users are also stored. However, we use available IP masking procedures (i.e., pseudonymization by shortening the IP address) to protect users. In general, within the online marketing process, clear user data (such as email addresses or names) is not stored, but pseudonyms. That is, both we and the providers of online marketing processes do not know the actual identity of users, only the information stored in their profiles.

The information in the profiles is usually stored in cookies or similar methods. These cookies can later be read on other websites that use the same online marketing process, analyzed for the purpose of displaying content, and supplemented with additional data on the server of the online marketing process provider.

Exceptionally, clear user data may be assigned to the profiles. This is the case when users, for example, are members of a social network whose online marketing process we use, and the network connects the profiles of users with the aforementioned information. Please note that users can make additional agreements with the providers, for example, through consent during registration.

We generally only have access to aggregated information about the success of our advertisements. However, through conversion measurements, we can determine which of our online marketing processes has led to a conversion, such as a contract conclusion with us. Conversion measurement is solely used to analyze the success of our marketing measures.

 

  • Processed data types: Usage data (e.g., visited websites, interest in content, access times); Meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, consent status).
  • Affected individuals: Users (e.g., website visitors, users of online services).
  • Processing purposes: Reach measurement (e.g., access statistics, recognition of recurring visitors); Tracking (e.g., interest/behavior-related profiling, use of cookies); Marketing. Profiles with user-related information (creation of user profiles).
  • Security measures: IP masking (pseudonymization of IP address).
  • Legal bases: Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR).
  • Opt-out possibility: We refer to the data protection information of the respective providers and the opt-out options provided by the providers (so-called “opt-out”). If no explicit opt-out option has been indicated, there is the possibility to disable cookies in your browser settings. However, this may restrict functions of our online offering. Therefore, we recommend the following opt-out options, which are offered summarily for each respective area:

     

    a) Europe: https://www.youronlinechoices.eu.
    b) Canada: https://www.youradchoices.ca/choices.
    c) USA: https://www.aboutads.info/choices.
    d) Cross-region: https://optout.aboutads.info.

Additional information on processing procedures, methods, and services:

  • Google Adsense with personalized ads: We use the Google Adsense service with personalized ads, which allows us to display ads within our online offering, and we receive compensation for their display or other use; Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; Legal basis: Consent (Art. 6(1)(a) GDPR); Website: https://marketingplatform.google.com; Privacy policy: https://policies.google.com/privacy; Basis for third-country transfers: Data Privacy Framework (DPF); Further information: Types of processing and processed data: https://business.safety.google/adsservices/. Data processing terms for Google advertising products: Information on data processing terms between controllers and standard contractual clauses for data transfers to third countries: https://business.safety.google/adscontrollerterms.
  • Google Adsense with non-personalized ads: We use the Google Adsense service with non-personalized ads, which allows us to display ads within our online offering, and we receive compensation for their display or other use; Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; Legal basis: Consent (Art. 6(1)(a) GDPR); Website: https://marketingplatform.google.com; Privacy policy: https://policies.google.com/privacy; Basis for third-country transfers: Data Privacy Framework (DPF); Further information: Types of processing and processed data: https://business.safety.google/adsservices/. Google Ads Controller-Controller Data Protection Terms and standard contractual clauses for data transfers to third countries: https://business.safety.google/adscontrollerterms.

Affiliate Programs and Affiliate Links:

In our online offering, we include so-called affiliate links or other references (such as search masks, widgets, or discount codes) to the offers and services of third-party providers (collectively referred to as “affiliate links”). When users follow the affiliate links or subsequently use the offers, we may receive a commission or other benefits from these third-party providers (collectively referred to as “commission”).

To track whether users have taken advantage of the offers of an affiliate link used within our online offering, it is necessary for the respective third-party providers to know that users have followed an affiliate link used within our online offering. The assignment of affiliate links to the respective transactions or other actions (e.g., purchases) serves solely the purpose of commission settlement and is deleted as soon as it is no longer necessary for this purpose.

For the purposes of the aforementioned assignment of affiliate links, the affiliate links can be supplemented with certain values that are part of the link or can be stored elsewhere, e.g., in a cookie. The values may include, in particular, the referring website (referrer), the time, an online identifier of the operators of the website on which the affiliate link was located, an online identifier of the respective offer, the type of link used, the type of offer, and an online identifier of the user.

Notes on legal bases: If we ask users for their consent to the use of third-party providers, the legal basis for data processing is consent. Otherwise, user data is processed based on our legitimate interests (i.e., interest in efficient, economic, and user-friendly services). In this context, we also refer you to the information on the use of cookies in this privacy policy.

  • Processed data types: Contract data (e.g., contract object, duration, customer category); Usage data (e.g., visited websites, interest in content, access times); Meta, communication, and process data (e.g., IP addresses, time information, identification numbers, consent status).
  • Affected persons: Users (e.g., website visitors, users of online services).
  • Purposes of processing: Affiliate tracking.
  • Legal bases: Consent (Art. 6(1)(a) GDPR), Legitimate interests (Art. 6(1)(f) GDPR).

Further information on processing procedures, methods, and services:

  • Amazon Partner Program: Affiliate partner program (Amazon and the Amazon logo are trademarks of Amazon.com, Inc. or its affiliates); Service provider: Amazon EU S.à r.l. (Société à responsabilité limitée), 38 avenue John F. Kennedy, L-1855 Luxembourg; Legal basis: Legitimate interests (Art. 6(1)(f) GDPR); Website: https://www.amazon.de; Privacy policy: https://www.amazon.de/gp/help/customer/display.html?nodeId=201909010. Basis for third-country transfers: Data Privacy Framework (DPF).

Presences on Social Networks (Social Media):

We maintain online presences within social networks and process user data within this framework to communicate with active users or to provide information about us.

We note that user data may be processed outside the European Union in this context. This may pose risks for users because, for example, the enforcement of user rights could be more difficult.

Furthermore, user data within social networks is usually processed for market research and advertising purposes. For example, user profiles can be created based on user behavior and resulting interests. The user profiles can in turn be used to display advertisements within and outside the networks that presumably correspond to the interests of the users. For these purposes, cookies are usually stored on the users’ computers, in which the user behavior and interests are stored. In addition, data can also be stored in the user profiles independently of the devices used by the users (especially if the users are members of the respective platforms and are logged in).

For a detailed presentation of the respective processing methods and opt-out options, we refer to the privacy policies and information of the operators of the respective networks.

Even in the case of information requests and the exercise of data subject rights, we point out that these can be most effectively asserted with the providers. Only the providers have access to the data of the users and can directly take appropriate measures and provide information. If you still need assistance, you can contact us.

  • Processed data types: Contact data (e.g., email, phone numbers); Content data (e.g., entries in online forms); Usage data (e.g., visited websites, interest in content, access times); Meta, communication, and process data (e.g., IP addresses, time information, identification numbers, consent status).
  • Affected persons: Users (e.g., website visitors, users of online services).
  • Purposes of processing: Contact inquiries and communication; Feedback (e.g., collecting feedback via online form); Marketing.
  • Legal bases: Legitimate interests (Art. 6(1)(f) GDPR).

Further information on processing procedures, methods, and services:

Privacy Policy for Plugins and Embedded Functions and Content

We integrate functional and content elements into our online offering that are obtained from the servers of their respective providers (hereinafter referred to as “third-party providers”). These elements may include graphics, videos, or maps (hereinafter collectively referred to as “content”).

The integration always requires that the third-party providers of this content process the IP address of the users, as they could not send the content to their browser without the IP address. The IP address is thus necessary for the presentation of this content or functions. We strive to use only content whose respective providers use the IP address solely for delivering the content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as “web beacons”) for statistical or marketing purposes. “Pixel tags” can analyze information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the users’ devices, containing technical information about the browser and operating system, referring websites, visit times, as well as other information about the use of our online offering, and may be linked with information from other sources.

  • Processed data types: Usage data (e.g., visited websites, interest in content, access times); Meta, communication, and process data (e.g., IP addresses, time stamps, identification numbers, consent status).
  • Data subjects: Users (e.g., website visitors, users of online services).
  • Purposes of processing: Provision of our online offering and user-friendliness; Marketing. Profiles with user-related information (creation of user profiles).
  • Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Further information on processing processes, procedures, and services:

  • Google Fonts (obtained from the Google server): Obtaining fonts (and symbols) for the purpose of technically secure, maintenance-free, and efficient use of fonts and symbols concerning freshness and loading times, their uniform display, and consideration of possible licensing restrictions. The provider of the fonts is informed of the user’s IP address so that the fonts can be made available in the user’s browser. In addition, technical data (language settings, screen resolution, operating system, used hardware) is transmitted, necessary for providing fonts depending on the devices used and the technical environment. This data may be processed on a server of the font provider in the USA. When visiting our online offering, users’ browsers send their browser HTTP requests to the Google Fonts Web API (i.e., a software interface for retrieving fonts). The Google Fonts Web API provides users with the Cascading Style Sheets (CSS) of Google Fonts and then the fonts specified in the CSS. These HTTP requests include (1) the IP address used by the respective user to access the internet, (2) the requested URL on the Google server, and (3) the HTTP headers, including the User-Agent that describes the browser and operating system versions of the website visitors, as well as the referral URL (i.e., the website where the Google font is to be displayed). IP addresses are neither logged nor stored on Google servers, and they are not analyzed. The Google Fonts Web API logs details of HTTP requests (requested URL, User-Agent, and referral URL). Access to this data is restricted and strictly controlled. The requested URL identifies the font families the user wants to load fonts for. This data is logged so that Google can determine how often a particular font family is requested. The Google Fonts Web API requires the User-Agent to adapt the font generated for the respective browser type. The User-Agent is primarily logged for debugging and used to generate aggregated usage statistics measuring the popularity of font families. These aggregated usage statistics are published on the “Analytics” page of Google Fonts. Finally, the referral URL is logged so that the data can be used for production maintenance and generate an aggregated report on top integrations based on the number of font requests. According to Google’s own information, none of the information collected by Google Fonts is used to create profiles of end users or to display targeted ads; Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://fonts.google.com/; Privacy Policy: https://policies.google.com/privacy; Basis for third-country transfers: Data Privacy Framework (DPF). Further information: https://developers.google.com/fonts/faq/privacy?hl=de.
  • Pinterest Plugins and Content: Pinterest Plugins and Content – This may include content such as images, videos, or texts and buttons with which users can share content from this online offering within Pinterest; Service provider: Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA; Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://www.pinterest.com. Privacy Policy: https://policy.pinterest.com/de/privacy-policy.

Changes and Updates to the Privacy Policy

We ask you to regularly inform yourself about the content of our privacy policy. We adjust the privacy policy as soon as changes to the data processing we perform make this necessary. We will inform you as soon as your cooperation (e.g., consent) or other individual notification is required due to the changes.

If we provide addresses and contact information of companies and organizations in this privacy policy, please note that addresses may change over time, and we ask you to check the details before contacting.

Created with the free privacy policy generator from Dr. Thomas Schwenke: https://datenschutz-generator.de/