Privacy policy

Data protection declaration from Dr. Glueckstein Beautiful SkinCare GmbH (PoBeau)

in the version June 2021


1 Scope

The Dr. At Glueckstein Beautiful SkinCare GmbH ("we") the protection of your privacy and personal data is a particular concern. With this data protection declaration we would like to inform you comprehensively about how we handle your personal data.

This data protection declaration applies to the handling of your personal data when you visit our website at www.pobeau.de, when you contact us by email, post or telephone and we subsequently provide you with services.

2. Who is responsible and who can I contact?

Dr. Glueckstein - Beautiful Skin Care GmbH, Bahnhofstrasse 23, 82041 Deisenhofen

is responsible for the processing of personal data described in this data protection declaration.


You can contact us with questions about data protection issues:

Dr. Glueckstein - Beautiful Skin Care GmbH

Bahnhofstrasse 23

D - 82041 Deisenhofen b. Munich

Email: info@pobeau.de


We are not legally obliged to appoint a data protection officer.  

3. What data do we process from you?

We collect and process various personal data from you depending on the specific processing situations. Below you will find a list of the data related to the respective processing situation:

 

3.1 What data do we process when you visit our website?

When you visit our website, we process, among other things:

Data on the use of the Internet pages provided (e.g. browser used, operating system used, referrer url, time of the server request, content accessed, duration of use, type of use); IP address and other technical data that are comparable to the previous ones.

We process this data in accordance with Article 6 (1) (f) GDPR on the basis of our legitimate interests in guaranteeing the technical functionality of the website and system security.


3.2 What data do we process when you contact us?

Depending on your concerns, you can contact us via email or in writing on our website. When you contact us by e-mail or post, we regularly only save and process your e-mail address, telephone number, address and the information that you provided to us when you contacted us.

In this case, we process your data in accordance with Article 6 (1) (b) GDPR on the basis of contractual or contractual obligations or to establish a contract with you.

 

3.3 What data do we process when you register on our website?

You can register voluntarily on our website. In this case, we only process the data provided during the registration process.

In this case, we process your data in accordance with Article 6 (1) (b) GDPR on the basis of contractual or contractual obligations or to establish a contract with you.

 

3.4 What data do we collect when you register for our newsletter?

You can receive our newsletter. To do this, it is necessary to provide your email address. In this case, we will use the data specified in the declaration of consent to send our newsletter. We use the so-called "double opt-in procedure" to check your ownership of the specified email address. After registering for the newsletter, we will first send you a confirmation email. Only after clicking on the link will we add your email address to the newsletter distribution list.

In this case, we process your data in accordance with Article 6 (1) (a) GDPR on the basis of your consent.

If you purchase products via our online shop and provide your e-mail address, we can use this data to inform you about similar products in a newsletter. The legal basis for this data processing is Article 6 Paragraph 1 lit.f GDPR in conjunction with Section 7 Paragraph 3 of the Act against Unfair Competition (UWG). Our legitimate interest is to provide you with current information about our products and services.

You can object to the receipt of the newsletter at any time by e-mail to info@pobeau.de or via the link contained in the newsletter.

 

4. With whom do we collect your personal data?

Personal data is mainly collected directly from you, for example when you visit our website or use the services offered, such as the possibility of contacting you by email.

When you interact with us through a social media website or a third-party service, for example when you "like", follow or share our content on Facebook or other websites, we may receive information from the social network, including your profile information, your picture, Your user ID associated with your social media account and any other information that you allow the social network to share with third parties.

 

5. For what purposes do we process your data and on what legal basis?

We process your personal data exclusively in accordance with the requirements of the relevant data protection laws. In certain situations, we also process your personal data to fulfill other legal obligations or on the basis of your express consent.

 

5.1 To fulfill contractual obligations

We process your personal data to fulfill contractual or contractual obligations or to establish a contract, for example for the provision of our services or the sale of the products we offer. In this case, the legal basis for processing is Article 6 (1) (b) GDPR.

 

5.2 To fulfill legal obligations

Insofar as we are subject to legal obligations, the observance of which requires the processing of your personal data, we process your personal data on the basis of these legal obligations. In this case, the legal basis for processing is Article 6 (1) (c) GDPR.

 

5.3 Based on legitimate interests

We also process your personal data to safeguard our legitimate interests, unless your interests or fundamental rights and freedoms, which require the protection of your personal data, prevail. Subject to a weighing decision to be made on a case-by-case basis, we regularly assume that our legitimate interests predominate in the following processing situations, which are not conclusively listed:

Optimization of our offers and services

Analysis of the use of our website

Ensuring the confidentiality and integrity of our IT systems; and

Cooperation with government authorities.

In this case, the legal basis for processing is Article 6 (1) (f) GDPR.


5.4 Based on your consent

If you have given us separate consent for the processing of your personal data, we will process your personal data within the framework and on the basis of this consent. Consent is required, for example, to personalize your cosmetics. Consents can, for example, also relate to the transfer of data for targeted advertising measures or the sending of newsletters.

Consent is always voluntary and can be revoked at any time and without giving reasons with effect for the future.

In this case, the legal basis for processing is Article 6 (1) (a) GDPR or Article 6 (1) (a) GDPR in conjunction with Article 9 (2) (a) GDPR.

6. Who do we pass on your data to?

Within the company, those persons will receive your data who absolutely need it to fulfill our contractual and legal obligations.

We only pass on your personal data to external recipients if there is a legal justification for this or you have consented to it. External recipients can be:

Processors: Service providers that we use to provide services or who are entrusted with the maintenance of our IT systems.

Public bodies: Authorities and state institutions, such as public prosecutors, courts or tax authorities, to which we may have to transmit personal data on a case-by-case basis.

Private bodies: Private bodies to which we transfer your personal data, for example lawyers (disputes, debt collection, etc.), tax consultants, auditors.

 

7. Do we transfer your data to third countries?

As part of the processes described in this data protection declaration, your personal data may be transmitted to offices whose registered office or the place of data processing is not in a member state of the European Union or in another state that is party to the Agreement on the European Economic Area. Before the transmission, we ensure that, outside of legally permitted exceptional cases, the recipient either has an adequate level of data protection (e.g. through an adequacy decision by the European Commission or through suitable guarantees such as the agreement of so-called EU standard contractual clauses between the European Commission and the recipient) or you have given your express consent. You can obtain a copy of these guarantees from us. Please use the contact details under section 2.

In the case of consent, compliance with the data protection principles of Union law is not guaranteed in the third country concerned. This can lead to a violation of fundamental rights and freedoms and the resulting damage. This can make it more difficult for a person concerned to assert their rights under the General Data Protection Regulation (e.g. information, correction, deletion, compensation) and, if necessary, to enforce them with the help of authorities or in court.

 

8. How long do we store your personal data?

We only process and store your personal data for as long as is necessary for our processing purposes.

If we use your email address for our email newsletter, we usually save the data until you unsubscribe from our newsletter. This does not affect our legal option to store this data for other purposes, e.g. keeping a blacklist to ensure that email addresses are no longer used for marketing purposes after you have unsubscribed.

We will delete the data collected and stored in the context of the use and provision of our website on request at any time and independently within a few days, unless we have a particular interest in continuous storage in individual cases, e.g. in the case of cyber attacks.

If a longer storage period is required due to legal storage and documentation obligations or to protect our legitimate interests, e.g. in the event of possible legal disputes, your personal data will also be stored and processed after the above period has expired. Once a contract or a contract-like relationship has been completed, we will, as far as possible, immediately block your personal data for further processing.

In the context of a contact request, we generally only save your data for the period necessary to answer your contact request. We generally store data that we process on the basis of your consent until you revoke your consent.

A final deletion takes place after the expiry of the periods resulting from the legal storage and documentation obligations, which are between two and ten years and result from the tax code or the commercial code, among other things.

 

9. Your rights

Below you will find a summary of your rights with regard to the processing of your personal data by us:

9.1 Rights to information, deletion, correction, restriction of processing, data portability and revocation

According to Art. 15 GDPR, you have the right to information, after which you can request confirmation as to whether we are processing your personal data. If this is the case, you have the right to request comprehensive information on this personal data from us.

According to Art. 16 GDPR, you can demand that incorrect data concerning you be corrected immediately.

According to Art. 17 GDPR, you have the right to request the deletion of your personal data if either (i) it is no longer required for the purposes for which it was collected, (ii) you have revoked your consent to processing, ( iii) You have objected to the processing in accordance with Art. 21 Paragraph 1 GDPR and there are no overriding legitimate reasons for continued processing, (iv) your personal data has been processed unlawfully, (v) the deletion of the personal data to comply with a legal requirement Obligation is required under Union law or the law of the member states to which Dr. Glueckstein Beautiful SkinCare GmbH is subject to, or (vi) the personal data has been collected in relation to information society services offered in accordance with Art. 8 Para. 1 GDPR.

According to Art. 18 GDPR, you have the right to request that processing be restricted under the following conditions. Such a right exists if (i) you have disputed the accuracy of your personal data, (ii) the processing is unlawful and you refuse the deletion of the personal data and instead request the restriction of use, (iii) the data is no longer for the Purposes of processing are required, but you need them for the establishment, exercise or defense of legal claims, or (iv) you have lodged an objection to the processing according to Art. 21 Paragraph 1 GDPR, as long as it has not yet been determined whether we have legitimate reasons the processing have outweighed yours.

According to Art. 19 GDPR, you have the right to request information about the recipients of data who have been notified of a correction, deletion of your personal data or restriction of processing.

According to Art. 20 GDPR, you have the right to receive your personal data from us in a structured, common and machine-readable format and to transfer this data to another person responsible.

If the processing or transmission of your personal data is based on your consent, you can revoke your consent at any time with effect for the future.

Against the processing of your data or any of Pobeau  You also have the right to lodge a complaint with the competent supervisory authority if you have made a decision in relation to one of the rights you have exercised.

 

9.2 Contact

To assert your rights listed under Section 9.1, you can informally by post or email using the contact options listed under Section 2.

 

9.3 Right of objection according to Art. 21 GDPR

9.3.1 Objection for reasons of your particular situation

According to Art. 21 Para. 1 GDPR, you have the right to object to the processing of your personal data at any time for reasons that arise from your particular situation.  

9.3.2 Objection to direct mail

According to Art. 21 Para. 2 GDPR, you have the right to object at any time to the use of your personal data for the purpose of direct mail.  If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes.

9.3.3 POSSIBILITY OF CONTACT

You can declare your objection informally by post or e-mail, addressed to:

Dr. Glueckstein - Beautiful Skin Care GmbH

Bahnhofstrasse 23

D - 82041 Deisenhofen b. Munich

Email: hello@pobeau.de

 

10. Is there an obligation on your part to provide personal data?

There is neither a contractual nor a legal obligation to provide us with your personal data when using our website. However, if you want to get in contact with us or want to buy our cosmetic products, certain information may be required so that we can process your request.

 

11. Is the processing based on automated decision-making or profiling?

You have the right not to be subject to a decision based solely on automated processing, including profiling, if the decision is not necessary for the conclusion or performance of a contract, is not required by mandatory legal provisions or is not based on your express consent is based.

We do not use any automated decision-making processes, including profiling, unless we have explicitly informed you about this.

 

12. What type of cookies and tracking technology do we use?

For the provision, maintenance and analysis of our Internet pages and their use, we use various software tools from third-party providers and ourselves, which are regularly based on the use of cookies, flash cookies (also called flash local shared objects), web beacons or similar technologies ( collectively as "tracking technologies"). Tracking technologies help us learn how you use our services (e.g. the pages you view or the links you click and other actions you take with the services), give us information about your browser and online Usage patterns (e.g. IP address, log data, browser type, browser language, referring / outgoing pages and URLs, pages viewed, whether you opened an e-mail, links clicked, etc.) as well as information about the devices with which you access our services access. Tracking technologies enable us to link the devices you use to access our services in such a way that we can recognize you on the various devices you use and, if necessary, contact you.

You can limit the use of tracking technology by changing the settings of your browser. You can determine which access you grant us to your device and whether and for how long cookies can be stored on your device. You can also delete cookies that have already been saved at any time. Please note that the functionality of our website may be impaired after deactivating all cookies. Similar functions (such as Flash cookies) that are used by so-called browser add-ons can be switched off or deleted by changing the settings of the browser add-on or via the website of the manufacturer of the browser add-on.


12.1 What are cookies?

A cookie is a small file that is transferred from the website's host server while a website is being used and stored on the user's device (desktop computer, laptop, tablet, smartphone, other internet-enabled devices) by the browser used will. Cookies are used to save information about the user and to be able to call it up when the website is called up again.

 

12.2 What are cookies used for?

Cookies help us to understand the use of our website, to analyze trends, to administer the website, to track the steps of a user on our website, to collect demographic information about our user base as a whole, to let you navigate efficiently between the pages, to remember your preferences and settings on our website and basically to improve your surfing experience. We process the data collected by means of tracking technologies in order to (i) remember information so that you do not have to enter it again during your visit or a new visit, (ii) to be able to recognize you across multiple devices, (iii) the To be able to control the functionality and performance of our website, (iv) to be able to record aggregated key figures with regard to the total number of visitors, total traffic, usage and demographic pattern on our website, (v) to diagnose and correct technical problems and (vi) otherwise To be able to implement plans and improvements to our website.

The common internet browsers offer the setting option not to allow certain cookies. If you make these settings, not all functions of our website can be used without settings.

 

12.3 What types of cookies are used on our website?

The cookies used on our website can usually be divided into one of the following categories: Mandatory cookies, analysis cookies, function-related cookies and marketing cookies.

12.3.1 Strictly Necessary Cookies

These cookies are essential for the functioning of our website and enable you to move around our website and use its functions. Without these cookies, certain services that are necessary for the full use of our website cannot be provided.

We process absolutely necessary cookies in accordance with Art. 6 Paragraph 1 lit. b GDPR.

12.3.2 Analysis cookies

With the help of these cookies we collect information about how users use our website, e.g. which pages are accessed and read most often, or how users get from one link to the next. All information that this type of cookie collects does not relate to an individual user, but is summarized and processed with the information of other users in an aggregated form. The cookies provide us with analytical data on how our website works and how we can improve it. We only use these cookies after you have given your consent. We process analysis cookies in accordance with Article 6 (1) (a) GDPR on the basis of your consent.

12.3.3 Function-related cookies (convenience functions)

These cookies allow us to save a certain selection you have made and to adapt our website so that it offers you extended functions and content. These cookies can be used, for example, to save your language or country selection. We process function-related cookies in accordance with Article 6 (1) (a) GDPR.

12.3.4 Marketing cookies

These cookies allow us to analyze which products are of interest to you in order to show you interest-based advertising on our and other websites.

We process marketing cookies in accordance with Article 6 (1) (a) GDPR.


12.4 How long are cookies stored on my devices?

The storage period depends largely on whether it is a "permanent" or a "session-related" cookie. Session-related cookies are deleted after you leave the website that set the cookie. Persistent cookies remain on your device even after you have stopped surfing until they are deleted or until they have expired.


12.5 Further information on cookies

We use the services of the third-party providers listed below to provide our website. These third-party tools belong to the categories of cookies described above and help us to offer our services on our website or to advertise our products and services on the Internet.

 purpose 

designation 

Provider / recipient 

Third country transfer / adequacy decision 


Cookie validity / storage period 

Performance use for the evaluation of user behavior on the website 

Shopify 

Shopify International Limited c / o Intertrust Ireland 2nd Floor 1-2 Victoria Buildings, Haddington Road Dublin 4, D04 XN32, Ireland 

no, EU 


2 years 

Performance use for the evaluation of user behavior on the website 

Shopify 

Shopify International Limited c / o Intertrust Ireland 2nd Floor 1-2 Victoria Buildings, Haddington Road Dublin 4, D04 XN32, Ireland 

no, EU 


30 minutes 

Performance use for the evaluation of user behavior on the website 

Hotjar 

Hotjar Ltd, Level 2 St Julians Business Center, 3, Elia Zammit Street St Julians STJ 3155, Malta 

no, EU 


session 

Performance usage to differentiate between individual users 

Google Analytics 

Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA 

EU standard contractual clauses 


1 day 

Performance use to identify unique users 

Google Analytics 

Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA 

EU standard contractual clauses 


2 years 

Performance use to throttle the request rate 

Google Analytics 

Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA 

EU standard contractual clauses 


1 minute 

Performance use to evaluate user behavior 

Shopify 

Shopify International Limited c / o Intertrust Ireland 2nd Floor 1-2 Victoria Buildings, Haddington Road Dublin 4, D04 XN32, Ireland 

no, EU 


30 minutes 

Performance use to evaluate user behavior 

Shopify 

Shopify International Limited c / o Intertrust Ireland 2nd Floor 1-2 Victoria Buildings, Haddington Road Dublin 4, D04 XN32, Ireland 

no, EU 


30 minutes 

Performance use to evaluate user behavior 

Shopify 

Shopify International Limited c / o Intertrust Ireland 2nd Floor 1-2 Victoria Buildings, Haddington Road Dublin 4, D04 XN32, Ireland 

no, EU 


2 years 

Performance use to evaluate user behavior 

Shopify 

Shopify International Limited c / o Intertrust Ireland 2nd Floor 1-2 Victoria Buildings, Haddington Road Dublin 4, D04 XN32, Ireland 

no, EU 


30 minutes 

Performance use to evaluate user behavior 

Shopify 

Shopify International Limited c / o Intertrust Ireland 2nd Floor 1-2 Victoria Buildings, Haddington Road Dublin 4, D04 XN32, Ireland 

no, EU 


2 weeks 

Performance usage to analyze the landing pages 

Shopify 

Shopify International Limited c / o Intertrust Ireland 2nd Floor 1-2 Victoria Buildings, Haddington Road Dublin 4, D04 XN32, Ireland 

no, EU 


2 weeks 

Marketing use for unique user identification 

Hotjar 

Hotjar Ltd, Level 2 St Julians Business Center, 3, Elia Zammit Street St Julians STJ 3155, Malta 

no, EU 


1 year 

Performance use to evaluate user behavior for marketing 

Facebook 

Facebook Inc., 1 Hacker Way in Menlo Park, CA 94025, USA 

EU standard contractual clauses 


3 months 

Marketing use for targeted marketing. 

Facebook 

Facebook Inc., 1 Hacker Way in Menlo Park, CA 94025, USA 

EU standard contractual clauses 


3 months 

Marketing use to identify the browser 

Google 

Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA 

EU standard contractual clauses 


15 minutes 

Functionality use for the security of the purchase 

Shopify 

Dr. Glueckstein - Beautiful Skin Care GmbH

Bahnhofstrasse 23

82041 Deisenhofen

no, EU 


2 weeks 

Functionality use for the security of the purchase 

Shopify 

Dr. Glueckstein - Beautiful Skin Care GmbH

Bahnhofstrasse 23

82041 Deisenhofen

no, EU 


2 weeks 

Functionality use for the security of the purchase 

Shopify 

Dr. Glueckstein - Beautiful Skin Care GmbH

Bahnhofstrasse 23

82041 Deisenhofen

no, EU 


1 hour 

Functionality use for the security of the purchase 

Shopify 

Shopify International Limited c / o Intertrust Ireland 2nd Floor 1-2 Victoria Buildings, Haddington Road Dublin 4, D04 XN32, Ireland 

no, EU 


session 

Functionality tracking for tracking landing pages 

Shopify 

Dr. Glueckstein - Beautiful Skin Care GmbH

Bahnhofstrasse 23

82041 Deisenhofen

no, EU 


1 year 

Mandatory use for the secure storage of customer data 

Shopify 

Shopify International Limited c / o Intertrust Ireland 2nd Floor 1-2 Victoria Buildings, Haddington Road Dublin 4, D04 XN32, Ireland 

no, EU 


18 years 

Mandatory use for secure checkout and a secure payment function 

Shopify 

Shopify International Limited c / o Intertrust Ireland 2nd Floor 1-2 Victoria Buildings, Haddington Road Dublin 4, D04 XN32, Ireland 

no, EU 


2 weeks 

Mandatory use for the function of the shopping cart 

Shopify 

Shopify International Limited c / o Intertrust Ireland 2nd Floor 1-2 Victoria Buildings, Haddington Road Dublin 4, D04 XN32, Ireland 

no, EU 


2 weeks 

Mandatory use to collect information from a visitor 

Shopify 

Shopify International Limited c / o Intertrust Ireland 2nd Floor 1-2 Victoria Buildings, Haddington Road Dublin 4, D04 XN32, Ireland 

no, EU 


2 weeks 

Mandatory use to speed up page loading times 

CloudFlare 

Cloudflare, Inc. 101 Townsend St, San Francisco, CA 94107 USA 

EU standard contractual clauses 


1 month 

 

13. Technical protective measures

For security reasons and to protect the transmission of confidential content that you send to us as the site operator, we use an SSL or. TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http: //” to “https: //” and by the lock symbol in your browser line.

If the SSL or TLS encryption is activated, the data that you transmit to us cannot be read by third parties.

 

Status: June 2021