Privacy Policy
Privacy Policy at a glance
We take the security of your personal data very seriously. The Yadore GmbH. We treat your personal data as strictly confidential and accordingly to the legal privacy policy law.
Many data processing operations are only possible with your express consent. You may revoke your consent at any time with future effect. An informal email to the Yadore GmbH making this request is sufficient. The data processed before we receive your request may still be legally processed.
The user has the right to have data which we process based on his consent or in fulfillment of a contract automatically delivered to himself or to a third party in a standard, machine-readable format. If the user requires the direct transfer of data to another responsible party, this will only be done to the extent technically feasible.
With the following overview we explain, how the Yadore GmbH handles your personal information when you visit our website yadore.com or advertisement we may place on other websites (own sites and third party sites). Personal information is any data with which you – also called “user” from now on – could be personally identified. More detailed information on the subject of data protection can be found in our privacy policy below.
The use of the data in the imprint for the purpose of sending non-requested advertisement or any kind of non-requested information is explicitly vetoed. We will take legal steps if we get non-requested information, advertisement, or any other kind of spam, via email or postal.
Responsible:
Company: Yadore GmbH
Street and number: Bavariafilmplatz 7
Zip code, City, Country: 82031, Grünwald, Germany
Phone: +49 89 96058289
Commercial register number: HRB 235343
Trade Register: Amtsgericht Munich
CEO: Fabian Gärtner
E-Mail address: mail@yadore.com
You can reach our data protection officer at dataprotection@yadore.com
State: 14.02.2020
Legal basis for our services and basic information on the use and disclosure of data.
The information in this Privacy Policy is intended to inform you of the purpose, scope and manner in
which your personal information is processed within our entire online offering and all related
websites,
including their features and content (collectively referred to herein as "Website" or "Online
Content").
This statement applies to all platforms and devices (such as mobile devices or desktop PCs) on which
our online offering is used or executed, regardless of the domain or system used. This information
is
provided in accordance with Art. 13 GDPR.
The terms used, such as: "personal data" or their "processing" are explained in the definitions in
Article 4 of the General Data Protection Regulation (GDPR).
Within this online offer processed personal user data are personal data (such as customer name and address), contract data (contract numbers, clerks, services used, information on payment), as well as data on use and customer input within our online offering (eg interest in certain products or content or input in the contact form). Persons affected by data processing include all visitors to our online offer, including business partners, interested parties and customers, hereinafter referred to as "users". The terms used, such as "User", "Customer" or "Service Provider" are to be understood as gender-neutral. All personal user data will be processed in compliance with the relevant data protection regulations. The basis for this is the existence of a legal permit and the consent of the user. The data processing is for the performance of our contractual services (eg order processing) or the online service (eg to ensure and comply with legal regulations), or due to our legitimate interest (eg for the security of our online offer within the meaning of Art. 6 (1) GDPR, analysis to optimize the safety and efficiency of our business, including profiling for advertising and marketing purposes, collection of reach and access data and third-party services), we will use the data in accordance with the legal permission framework. Art. 6 (1) a. and Art. 7 GDPR form the legal basis for the consent, Art. 6 (1) b. GDPR serves as the legal basis for the processing of contracts and services. The legal basis for the processing of the data to fulfill our legal obligations is Art. 6 (1) c. GDPR, and as a basis for the processing of the data is tosafeguard our legitimate interests, according to Art. 6 (1) f. GDPR.
Disclosure of data to third parties and third-party providers
A transfer of data to third parties takes place exclusively in accordance with legal requirements. It only takes place if this is necessary for the purpose of the contract (in accordance with Article 6 (1) (b) GDPR) or because of legitimate interests in our economic and effective business operations (pursuant to Article 6 (1) GDPR). In order to comply with the legal requirements and for the protection of personal data, we also take appropriate legal, technical and organizational measures when using subcontractors. If third-party services, tools or other means are used and the named seat of this provider is located in a third country, data transfer to that country is also likely. The GDPR is an EU regulation and applies to all member states. Transmission to countries outside the EU or the European Economic Area is only permitted with legal permission, consent of the users, or at an adequate level of data protection in the respective third country.
If the Yadore GmbH puts advertisement on the website yadore.com, other websites of the Yadore GmbH or third-party websites, the following applies
The Yadore GmbH only records data if a user actually clicks on an advertisement from the Yadore GmbH. We anonymously record the time of the click, the website the user clicked on the advertisement, which advertisement was clicked and the information according to this advertisement (the merchant clicked, the category the advertisement was from). Also, we record the referrer, so the website the user came, the IP of the user, the user’s browser and the country the user came from. We also set a user ident number for the click from that website the advertisement was placed on and an ident number for the whole click process. Besides that, we don’t collect or record any personal data from the user.
The following data of the user will just be forwarded to the advertising partner for the purpose of provision invoicing
The Yadore GmbH will send a anonymous ident number to the advertising partner for the purpose of making sure we count the same amount of clicks as the advertising partner and to have a correct payment at the end of each month. We don’t forward any personal data from the user, just the click ident number especially created for the click event.
We send the following anonymous data to the provider of the third-party websites (=”publisher”)
In the process of the click we create a “click ident number”. But there is no chance for the publisher to see which user is behind a click ident number or he cant access any personal data from the user. The publisher has the chance to create his own click ident number. With this we will give him the time of the click, the country of the user and the merchant the user actually clicked on his website. The named data is saved for 90 days for the purpose of correct payments to the publisher. This is regulated in Art. 6 (1) lit b. GDPR, which allows the handling of such data to fulfill our contractual obligations.
The Yadore GmbH automatically collects and saves data in so called server logs, which the browser of the user automatically sends to the Yadore GmbH
These are:
- Anonymized IP address
- Browser type and version
- Operating system
- Referrer URL
- Hostname of the accessing computer
- Time of the server request
Combination of this data with any other data sources is not happening at any time.
This is regulated in Art. 6 (1) lit b. GDPR, which allows the handling of such data to fulfill our contractual obligations.
If a user sends a request to the Yadore GmbH via the contact form, we will record and save the information given in the contact form and the data the user provided to contact him until the request is solved. We do not give this data to anyone until the user requests it.
The handling of the data given in the contact form is exclusively based on the consent of the user according to Art. 6 (1) lit a. GDPR. The user can withdraw this consent at any time. The user only has to send us a informal message via e-mail to the Yadore GmbH. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.
The data entered by the user in the contact form remain stored at Yadore GmbH until the user requests deletion, revokes consent for storage or the purpose for data storage is dropped. Mandatory legal regulations such as retention periods remain untouched.
Measures for protection and safety
In order to protect the data processed by us from accidental or intentional manipulation, destruction, loss or access by unauthorized persons, and to comply with the provisions of data protection laws, we make technical, organizational and contractual security arrangements according to the state of the art. The encrypted transmission of data between our server and your browser is one of the security measures used.
Fulfillment of contractual services
In order to fulfill our contractual and service obligations, we process stock data (for example name and address as well as contact data of the users) and data on concluded contracts (for example used services, information on payment and shipping) acc. Art. 6 (1) lit b. GDPR. The required mandatory information for the creation of a user account will be communicated to the users during the registration. Indexing of user accounts by search engines is not possible because they are not public. Data from terminated user accounts will be deleted unless storage is necessary for commercial or tax law reasons (according to Art. 6 (1) (c) GDPR). Upon termination, it is up to the users to secure their data before the end of the contract. We are entitled to the irretrievable deletion of all data stored by the user during the term of the contract. To protect against misuse or unauthorized use and to protect our legitimate interests, we store the IP address and time when registering, re-registering and using our online services. Basically, this data is not passed on to third parties, exceptions are the pursuit of our claims or a legal obligation under Art. 6 (1) c GDPR. For advertising purposes, we create a user profile based on the usage data (eg visits to our web pages or specific product interests) as well as content data (entries in forms or information in the customer account) in order to be able to show users interesting product hints and offers.
Contact by the user
To process user requests (via email or contact form), the information of the user in accordance with. Art. 6 (1) b GDPR processed.
Online presence in social media
Based on our legitimate interests within the meaning of Art. 6 (1) f. GDPR we maintain online presence on social networks and platforms. There it tries to communicate with customers, interested parties and users, also there is informed about our services. When calling the respective networks and platforms, the terms and conditions and the data processing guidelines apply to their respective operators. Insofar as this privacy statement does not specify any further processing of the data, the data of the users who communicate with us or interact with our content will be processed.
Measuring the range and use of cookies
Cookies are small files that are stored on the users computer. We mainly use cookies (session cookies), which are deleted from the respective storage medium at the end of the browser session. Session cookies are needed for example, to allow shopping cart functions or to store your entries across multiple pages. However, we also use cookies that remain on the user's hard drive. This allows for automatic detection of the user when re-visiting and the preferred inputs and settings. These cookies are stored for a period of one month to 10 years on the hard disk and delete themselves after the given time. These cookies are primarily intended to make the online offering more user-friendly, secure and effective. We also inform users within this Privacy Policy about the use of cookies in the context of pseudonymous range measurement. If users want to avoid storing cookies, this option can be disabled in the browser settings themselves. Already stored cookies can also be deleted there, however, the exclusion of cookies can lead to functional restrictions of our online offer. An objection to the use of cookies for the purpose of measuring reach and advertising purposes can be obtained through the deactivation page of the Network Advertising Initiative (http://optout.networkadvertising.org/), the European website (http://www.youronlinechoices.com/uk/your-ad-choices/ and additionally the US-American website (http://www.aboutads.info/choices).
Google reCAPTCHA
With the consent of the user of Art. 6 para. 1 lit. a DSGVO, we use the Captcha service of Google, which protects websites from spam software and abuse by non-human visitors. This service is used when you fill out our form. Google reCAPTCHA belongs to the company Google Inc. For the European area, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. Further information on data protection can be found here.
Collection of access data and records (logfiles)
Any access to our servers is subject to our legitimate interest within the meaning of Art. 6 (1) f. GDPR, corresponding data (so-called server log files), including date and time, amount of data, name of the accessed website, success report on the call, the operating system including browser type and version, the previously visited website, the IP address and the provider. For the purpose of fraud or misuse the logfile information is stored for security reasons for a maximum of seven days and then deleted. If certain data is necessary for evidence purposes, the deletion will be postponed until the final clarification of the incident.
Use and use of Google Analytics
For the optimization, analysis and economic operation of our online offer, we rely on our own interest within the meaning of Art. 6 (1) f. GDPR, Google Analytics. This is a web analytics service provided by Google LLC Google uses cookies for the purpose of analysis with information about the use of the online offer by the users, which are usually transmitted to and stored on a Google server in the USA. Google provides a guarantee for compliance with European data protection law and is certified under the Privacy Shield Agreement (https://www.privacyshield.gov/participant). Google produces reports on the use of our online offer on our behalf. For this and for further services on our behalf, information about the activities of the users are collected within our offer. This information can also be used to create pseudonymous usage profiles.
Google Analytics is used by us to show ads placed by Google (and its affiliates) only to those users
who
have certain characteristics (interest in specific topics or products) (so-called remarketing). By
using
Remarketing Audiences, we ensure that the ads are not annoying and that they are in the interest of
the
user.
In general, Google shortens the user's IP address within the EU or the EEA (IP anonymization
enabled).
In exceptional cases, however, the full IP address can be transferred to a Google server in the US
and
shortened there.
A combination of the IP address of the user and other Google data does not take place. Users can
prevent
the collection and processing of user data by downloading and installing the browser plug-in
available
at this link: http://tools.google.com/dlpage/gaoptout?hl=en
The storage of cookies can also be done by Settings in the respective browsers are avoided.
In addition to the browser settings and Google's additional software, we offer another function to
prevent data collection. Here you can see if the collection of your views via Google Analytics is
activated on our website. You can also prevent capture by clicking "Disable Now". If you click the
button, an HTML5 storage object is saved on your computer, which then ensures that no script is
loaded
by Google Analytics. If the site data is deleted in this browser, the link must be clicked again.
Furthermore, the opt-out applies only within the browser you use and only within our respective
webdomain, on which the link was clicked.
For further information on settings and possibilities of appeal as well as for data collection by Google, please contact Google directly: https://www.google.com/intl/de/policies/privacy/partners, http://www.google.com/policies/technologies/ads and http://www.google.com/settings/ads You can also view and edit your ad settings here, https://adssettings.google.com/.
Integration of services and content of third parties
Our online offer also includes offers from third-party providers. This is also based on our
legitimate
interest within the meaning of Art. 6 (1) f. GDPR. Content and its presentation (such as videos or
fonts) require that third parties recognize the user's IP address. For the transmission of the
contents
to the browser this is unavoidable. When selecting third-party vendors, we take care to only use
those
vendors who use the IP address only for delivery of the content. In addition, third parties may use
web
beacons or pixel tags to collect data for statistics and marketing. As a result, for example
information
about the visitors of the website will be evaluated. All data may be stored in cookies on the device
used by the user, pseudonymised. These data include technical information about the operating system
and
browser, as well as data on the use of the offer. This data can also be linked to data from other
sources.
Below you will find an overview of the third-party providers we include, including links to the
corresponding data protection statements. These also contain further information on possibilities of
objection, as well as opt-out options, if these are possible.
- For the integration and administration of the various analysis and marketing services we can use the "Google Tag Manager".
- If we use external Google fonts (https://www.google.com/fonts) on our online offering, we do so by calling Google at Google. You can find the privacy policy here: https://www.google.com/policies/privacy/, Again, there is an opt-out method: https://www.google.com/settings/ads/.
- External code of the JavaScript framework "jQuery" provided by the third-party jQuery Foundation, https://jquery.org.
Further information on third-party cookies
The Yadore GmbH cooperates with a number of affiliate networks that serve as an intermediate between the Yadore GmbH website partner and the advertiser. These networks use cookies to record clicks and subsequent purchases to be able to pay a commission to the Yadore GmbH. The affiliate networks’ cookies are placed when a link to an advertiser or an advertiser’s product is clicked within a partner website. The Yadore GmbH does not have any influence on the affiliate networks’ cookies. In the following, you can find an excerpt of the affiliate networks with which the Yadore GmbH works:
| Partner | Website | Privacy Policy | Cookies |
|---|---|---|---|
| Connexity | Link | Link | Link |
| Guenstiger | Link | Link | |
| Kelkoo | Link | Link | Link |
| PriceRunner | Link | Link | Link |
| Shopping24 | Link | Link | |
| Skinflint | Link | Link | |
| Solute | Link | Link | Link |
Personal rights of users
Upon request, every user can obtain information about their personal data stored by us. In addition, users have the right to have incorrect data rectified and to limit the processing and deletion of their personal data. In addition, the right to data portability can be invoked. A complaint to the competent supervisory authority is possible at any time. Any consent given by the user can always be revoked at any time, only with future effect.
Data deletion
Data that is not subject to a statutory retention period will be deleted as soon as it is no longer necessary for your purpose. If the deletion is not possible due to its purpose or other provisions, its processing will be restricted. Blocking the data thus prevents processing for other purposes. The storage takes place in accordance with § 257 exp. 1 HGB (for trading books, inventories, opening balance sheets, annual accounts, trade letters, accounting documents, etc.) for 6 years, as well as § 147 (1) AO (for books, records, management reports, accounting documents, trading and business letters, documents relevant to taxation, etc.) for 10 years.
Right to object
Users may object to the processing of their personal data in accordance with legal requirements at any time. The objection may in particular be made against processing for direct marketing purposes.
Updating the privacy policy
We reserve the right to change this privacy policy if the legal situation changes, as well as changes in our services or data processing. However, this applies exclusively with regard to declarations of data processing. If users' consent is required, or if elements of the privacy policy contain provisions of the contractual relationship with the users, changes are only possible with the consent of the users. We ask users to regularly obtain independent information about the content of the privacy policy.
