Data Privacy Declaration
We are responsible for handling your data, which we process according to your wishes and according to the requirements of German and EU data protection laws. Personal data is data that can be used to identify you. Your personal data will only be processed by us if a legal provision allows it or if you have given your prior consent.
1. We are responsible for your data
Your data is being processes by us, Caseking GmbH, Gaußstr. 1, 10589 Berlin, Germany and by our service providers, who process your data on our behalf for the purposes specified below. Our service providers include print shops, letter shops, call centres, logistics companies, data centres, analysis service providers and payment service providers. Our service providers are prohibited from processing your data for other purposes outside the scope of our service agreements with them.
Please contact us via [email protected]. if you have any questions regarding your data.
2. Scope of the Data Privacy Declaration
This data privacy declaration applies to:
- our online offers in our web shop https://www.caseking.de und https://www.caseking.de/businesskunden-b2b and blogs, available via https://www.caseking.de/caseking-blog
- our partner websites https://de.endgamegear.com und https://de.noblechairs.com
- our telephone offers, i.e., the hotlines " consultation and ordering", "customer service and support" and "Business Customers"
- our business premises such as Outlet Stores and Warehouses, in which an encrypted video surveillance takes place (https://www.caseking.de/computer-shop-berlin)
- our cooperation with manufacturers and suppliers
- our job offers and the application process
- and whenever a reference is made to this data privacy declaration on websites, subdomains, mobile applications, web services or integration in third-party sites, regardless of the way in which you access or use them.
3. Data Privacy Officer
If you have a question regarding data privacy or data security, you can contact our data privacy officer
via the email address [email protected]
Department Data Privacy
4. Data Security
We take all technical and organizational security precautions to protect your personal data against accidental or deliberate manipulation, loss, destruction or against access by unauthorized persons and we ensure the protection of your rights in compliance with the applicable data protection regulations of the EU and the Federal Republic of Germany.
All security measures taken are intended to guarantee the confidentiality and integrity of your data and ensure the availability and resilience of the systems and services when processing your data in the long term. The security measures enable us to quickly restore the availability of and the access to the data in the event of a physical or technical incident. Our security measures also include encryption of your data. All information that you enter online is technically encrypted before its transmission, whereupon this information cannot be viewed by unauthorized third parties at any time. Your data is protected by the SSL (Secure Sockets Layer) protocol with a 256-bit key.
Our data processing and our security measures are continuously improved in line with modern technical developments. Our employees are obliged in writing to maintain confidentiality and to comply with the data protection requirements of the GDPR.
5. Notes on data processing
Unless otherwise stated, the following applies to all our processing activities:
a. What are mandatory or mandatory fields?
If certain data fields are designated as mandatory fields and / or marked with an asterisk (*), the provision of this data is either required by law or because we need this data for the conclusion of the contract, the desired service or the stated purpose. Failure to provide (correct) information in the mandatory fields may result in us not fulfilling the contract or not being able to provide the requested service or not being able to achieve the desired purpose.
b. Extended Consent
You can consent to further, additional processing of your data. In case you provide your consent to further processing, you will be informed about the modalities and range of the respective data processing activities. For this reason, such additional processing activities will not finally and conclusively be listed here. (Art. 13 Para. 4 GDPR).
c. Transfer of Personal Data to Third Countries
When transferring data to third countries, .i.e. countries outside the European Union (EU) or the European Economic Area (EEA), then our transmission takes place exclusively in compliance with the legal requirements and according to an adequacy decision following Art. 45 GDPR or suitable guarantees according to Art. 46 GDPR.
One of these adequacy decisions is the implementation decision (EU) 2016/1250 of the European Commission of July 12, 2016 on the so-called EU-US data protection shield (Privacy Shield) for the USA. For transmissions to companies that are certified according to the EU-US data protection shield, the level of data protection is generally considered to be appropriate within the meaning of Art. 45 GDPR. Furthermore, there are adequacy decisions for certain countries such as Switzerland, Canada and Israel.
Alternatively, or additionally, the conclusion of the EU standard data protection clauses issued by the European Commission creates suitable guarantees in accordance with Art. 46 Para. 2 c) GDPR as well as an appropriate level of data protection. Copies of the EU standard data protection clauses can be found on the website of the European Commission https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/model-contracts-transfer-personal-data-third-countries_de.
d. Hosting by external Service Providers
Our data is being processed by external hosting service providers, who process data on our behalf according to our instructions and provide us with storage space and processing capacities in their data centres. Therefore, your personal data may be transmitted to hosting service providers too. These service providers process data either exclusively in the EU / EEA or in compliance with the provisions under section 5c above. The admissibility requirements mentioned above guarantee an adequate level of data protection.
e. Transmission to Official Authorities
We transmit personal data to official authorities (including law enforcement authorities) if this is necessary to fulfil a legal obligation to which we are subject (legal basis: Art. 6 Para. 1 c) GDPR) or if it is necessary to assert, exercise or defend legal claims (Legal basis Art. 6 Para. 1 f) GDPR).
f. Storage Duration
We only use personal data for as long as necessary for the respective processing purpose. After this time, the data will no longer be processed by us, but will be deleted at regular intervals, unless continuous processing and storage is legally stipulated (in particular because it is necessary to fulfil a legal obligation such as the statutory retention periods according to §§ 238, 257 HGB, §147 AO or for the establishment, exercise or defence of legal claims) or you give us any further consent.
g. Data Categories
In the following sections, the data categories used by us are listed:
- Account Data: login-/username and password
- Basic Personal Data: title, gender, first name, surname, date of birth
- Address Data: street, number, additional address detials, postal code, location, country
- Contact Data: telephone number(s), fax number(s), email address(es)
- Login Data: Information about the service through which you signed up; time and technical information on registration, confirmation and deregistration; data you provided when logging in
- Order Data: products ordered, prices, payment and delivery information
- Payment Data: bank account details, credit card details, details of other payment services
- Newsletter usage data: opening of the newsletter (date and time), content, selected links, information from the accessing computer system: Internet protocol address (IP address) used, browser type and version, device type, operating system and similar technical information.
- Access Data: date and time of your visit; the page from which the accessing system came to our page; pages opened during use; Session identification data (Session ID); information from the accessing computer system: Internet protocol address (IP address) used, browser type and version, device type, operating system and similar technical information.
6. Usage of Data
a. Contact / Requests
If you have any questions or requests, please do not hesitate to contact us. We process your details to answer your inquiries (Art. 6 Paragraph 1 b, f GDPR). The communication of address and telecommunication data marked as mandatory information is required to be able to process and answer your request. The voluntary provision of further data makes it easier for us to process your request.
After answering the request, we usually save the information from your request for six months in the event of further inquiries, unless it concerns commercial or business letters, we save these for six years (§ 257 Paragraph 4 HGB, Art. 6 Paragraph 1 c GDPR). For contract-related inquiries, please see letter c.
We process your required registration information (mandatory information, e.g., name, email address and password) as well as the other data voluntarily provided in the context of your use for the establishment and your use of the functions of our portal (Art. 6 Para. 1 b GDPR). We store your registration details until you revoke your access by informing us accordingly (contact details see section 3) if there are no other retention periods to the contrary. These can be z. B. from your orders (see letter c.).
In the case of an order or other contract-related inquiries, we first process your personal data for processing or processing the order or other contract-related inquiry and, if necessary, for the corresponding invoicing (Art. 6 Para. 1 b GDPR).
Insofar as data is marked as mandatory, it is required for processing or processing the corresponding contract or for invoicing.
We store your data relevant to the order and the associated documents (e.g., commercial letters, invoices) in accordance with the legal requirements after the conclusion of the contract in accordance with the statutory provisions for six years (§ 257 Paragraph 4 HGB, Art. 6 Paragraph. 1 c GDPR) or ten years (Section 147 Paragraph 3 AO, Art. 6 Paragraph 1 c GDPR).
- Mail advertising and customer analyzes: We also process the data from orders and inquiries to the extent permitted by law for sending catalogues and advertising by mail from our company and from affiliated companies in the retail, publishing, telecommunications and financial sectors as well as donation organizations and for internal marketing - and customer analyses to the extent permitted by law in order to be able to offer you appropriate information (Art. 6 Para. 1 f GDPR). Our analysis are pseudonymized on a regular basis.
- E-mail advertising with consent: With your express consent, which can be revoked at any time, we will inform you about our offers by e-mail (Section 7 Paragraph 2 No. 3 UWG, Art. 6 Paragraph 1 a GDPR). For the revocation of consent and its consequences, see section 7 below. We process your mandatory information when you give your consent so that we can send you the selected newsletter and address you personally. When obtaining your consent, we use the so-called double opt-in procedure online to avoid our e-mail messages being sent to e-mail addresses of people who have not requested them. In accordance with the requirements of the data protection supervisory authorities, your IP address is also recorded and stored for documentation purposes (Art. 7 Paragraph 1, Art. 6 Paragraph 1 c GDPR).
- E-mail advertising in the context of the business relationship: If you gave us your e-mail address when you placed your order, we will also inform you by e-mail about our products or services to the extent permitted by law (Section 7 (3) UWG, Art. 6 Para. 1 f GDPR). You can of course object to the basic tariffs at any time (see section 7 below).
- Storage period for advertising purposes: We store your data collected for advertising purposes if the advertising purpose still exists or until we receive a revocation of your consent or your objection to the processing of your data for advertising purposes (see section 7 below).
- Change of purpose: Should we change the purposes of the processing over time, we will inform you in advance by updating this information on data protection.
The specified storage periods can be extended accordingly if there is a longer statutory or contractual storage period in individual cases, if the data is processed for different purposes.
7. Right of Objection and Withdrawal at Any Time
You have the right to object to the processing of your data at any time for reasons that arise from your situation if the legal requirements are met.
Even if you object to the processing of your data for advertising purposes or would like to revoke your consent, a short message to our data protection officer by e-mail to [email protected] or Caseking GmbH, Data Protection Department, Gaußstr. 1, 10589 Berlin; In the case of e-mails, it is sufficient to press the unsubscribe button in the e-mail. Your data will then no longer be processed for the purposes covered by the advertising objection or revocation of consent.
The legality of the processing carried out up to the point of objection or revocation remains unaffected.
After your objection to the processing of your personal data for advertising purposes or the revocation of your consent, we are obliged under data protection law in accordance with the requirements of the German data protection supervisory authorities to include the data required for this (name, address, e-mail address) in our internal advertising blacklist and to save (block) permanently - only for this purpose - and to use it for comparison with our future advertising files (Art. 21 Paragraph 3, Art. 17 Paragraph 3 b, Art. 6 Paragraph 1 c, f GDPR). In this way, compliance with your objection to advertising or the revocation of your consent can be permanently ensured.
8. What are cookies and what are they used for?
Cookies are small files that are stored on your data carrier and that save certain settings and data for exchange with our system via your browser. There are basically 2 different types of cookies, so-called session cookies, which are deleted as soon as you close your browser, and temporary / permanent cookies, which are stored on your data carrier for a longer period or indefinitely. This storage helps us to design our web pages and our offers accordingly for you and makes it easier for you to use them, for example by saving certain entries made by you so that you do not have to repeat them repeatedly.
Cookies are used on this website (Section 12 (1) TMG) to enable and ensure the technical functions required for the requested services, e.g., B. the shopping cart function (Art. 6 Para. 1 b and f GDPR) to observe the rejection of cookies ("opt-out" cookies) (Art. 6 Para. 1 c GDPR).
c. What data are stored in the cookies?
Only pseudonymous data is stored in the cookies we use. When the cookie is activated, an identification number is assigned to it and your personal data is not assigned to this identification number. Your name, your IP address or similar data that would enable the cookie to be assigned to you are not stored in the cookie. Based on cookie technology, we only receive pseudonymized information, for example about which pages of our shop were visited, which products were viewed, etc.
d. How can you prevent the storage of cookies?
You can set your browser so that the storage of cookies is only accepted if you agree to this. If you only want to accept the Caseking cookies, but not the cookies from our service providers and partners, you can select the setting in your browser "Block third-party cookies". As a rule, the help function in the menu bar of your web browser shows you how to reject new cookies and how to switch off cookies that have already been received. Detailed information on how you can make the settings in the browser you are using can be found at the following link. We recommend that you always completely log out of shared computers that are set to accept cookies and flash cookies after you have finished.
e. Are there also third-party cookies?
We use several advertising partners who help to make the Internet offer and the websites more interesting for you. Therefore, when you visit the website, cookies from partner companies are also stored on your hard drive. These are temporary / permanent cookies that are automatically deleted after the specified time. These temporary or permanent cookies (lifespan 14 days to 10 years) are stored on your hard drive and delete themselves after the specified time. The cookies of our partner companies only contain pseudonymous, mostly even anonymous data. This is, for example, data about which products you viewed, whether something was purchased, which products were searched, etc. Some of our advertising partners also collect information about which pages you have visited before or for which, via the websites Products you were interested in, for example, so that we can show you advertising those best suits your interests. These pseudonymous data will never be merged with your personal data. Their sole purpose is to enable our advertising partners to address you with advertising that may be of interest to you.
f. Rejection / deletion of cookies
You can basically prevent the storage of cookies by changing the settings in your browser software. You can also delete cookies from your device's hard drive at any time. However, this can restrict the presentation of the website or user guidance.
You can also change your cookie settings at any time and thus revoke your consent. Withdrawing your consent does not affect the legality of the processing carried out based on your consent up to the point of withdrawal.
Change cookie settings
8.1. Google Remarketing
8.2. Google AdWords Conversion Tracking
This website uses the online advertising program "Google Ads" and, as part of Google Ads, the conversion tracking of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). We use the offer of Google Ads to draw attention to our attractive offers with the help of advertising materials (so-called Google AdWords) on external websites. In relation to the data from the advertising campaigns, we can determine how successful the individual advertising measures are. We are interested in showing you advertisements that are of interest to you, to make our website more interesting for you and to achieve a fair calculation of advertising costs.
The conversion tracking cookie is set when a user clicks on an Ads ad placed by Google. Cookies are small text files that are stored on your computer system. These cookies usually lose their validity after 30 days and are not used for personal identification. If the user visits certain pages on this website and the cookie have not yet expired, we and Google can see that the user clicked on the ad and was redirected to this page. Each Google Ads customer receives a different cookie. This means that cookies cannot be tracked via the websites of Google Ads customers. The information obtained using the conversion cookie is used to generate conversion statistics for Google Ads customers who have opted for conversion tracking. The customers find out the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information with which users can be personally identified. If you do not want to participate in tracking, you can block this use by deactivating the Google conversion tracking cookie in your Internet browser under user settings. You will then not be included in the conversion tracking statistics. We use Google Ads based on our legitimate interest in targeted advertising in accordance with Article 6 Paragraph 1 lit. When using Google Ads, personal data may also be transmitted to the servers of Google LLC. come in the US
We use the Facebook Pixel analysis tool from Facebook, a social media network operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2 Ireland. The code implemented on this page can evaluate your behavior if you have reached this website from a Facebook advertisement. This serves to improve Facebook advertisements and is based on our legitimate interest in accordance with Article 6 (1) (f) GDPR. Your data collected in this way will be saved by Facebook. The recorded data cannot be viewed by us. We only use them in the context of advertisements. Cookies are set using the Facebook pixel code. By using the Facebook pixel, the visit to this website is communicated to Facebook and used to display interest-based advertising. If you have a Facebook account and are logged in, your visit to this website will be assigned to your Facebook user account. You can revoke the use of your data for this purpose at any time by sending a message to the contact details mentioned under point 2. You can find out how the Facebook pixel is used for advertising campaigns at https://www.facebook.com/business/learn/facebook-ads-pixel.
You can change your settings for advertisements in Facebook at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen settings_screen, provided you are logged into Facebook. You can find more information on Facebook's data policy at https://www.facebook.com/policy.php.
9. Use of web analysis / tracking
Like other website operators, we use analysis tools in the form of tracking software to determine the frequency of use and the number of users of our website. We use Google Analytics®, a web analysis service from Google Inc. This tracking software uses so-called cookies, which are stored on a user's computer to enable a technical analysis of the use of the website (see section Cookies). The information generated by the cookie about the use of this website is used to compile reports on the activities on the website and to provide other services related to website use. Your IP address will be made unrecognizable and thereby anonymized. With this software, neither we nor the operators of the respective analysis tools can collect personal information that would allow conclusions to be drawn about the identity of the user. You will find further details on web tracking and data protection of these providers and their technology on the specified websites of the companies mentioned:
Google (Universal) Analytics
This website uses Google Analytics, a web analysis service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). Google Analytics uses so-called "cookies", text files that are stored on your computer and that enable your use of the website to be analyzed. The information generated by the cookie about your use of this website (including the abbreviated IP address) is usually transferred to a Google server and stored there; it can also be transferred to the Google LLC server in the US.
This website uses Google Analytics exclusively with the extension "_anonymizeIp ()", which ensures anonymization of the IP address by abbreviation and excludes direct personal reference. As a result of the extension, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. The full IP address will only be sent to a Google LLC server in exceptional cases. broadcast in the USA and abbreviated there. In these exceptional cases, this processing takes place in accordance with Article 6 (1) (f) GDPR based on our legitimate interest in the statistical analysis of user behavior for optimization and marketing purposes.
On our behalf, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide us with other services relating to website activity and internet usage. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
You can prevent the storage of cookies by setting your browser software accordingly; we would like to point out, however, that in this case you may not be able to use all functions of this website to their full extent. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by downloading the browser plug-in available under the following link and install: https://tools.google.com/dlpage/gaoptout?hl=de
In case that personal data is transmitted to Google LLC. based in the USA, Google LLC. is certified for the US-European data protection agreement "Privacy Shield", which guarantees compliance with the data protection level applicable in the EU. A current certificate can be viewed here: https://www.privacyshield.gov/list
Further information on Google (Universal) Analytics can be found here: https://support.google.com/analytics/answer/2838718?hl=de&ref_topic=6010376
VWO collects anonymized information about your activities on our website. Cookies are used here, through which exclusively pseudonymized information is stored under a randomly generated ID (pseudonym). Your IP addresses are only saved anonymously. A direct personal reference is therefore not possible.
You can prevent VWO from collecting data by clicking this link. An opt-out cookie is set that prevents the future collection of data from your visit to this website.
You can also find further information’s on the tracking technology used at the following link: https://vwo.com/privacy-policy
Caseking GmbH uses the services of Dynamic Yield Ltd. (Highlands House, Basingstoke Road, Spencers Wood, Reading, Berkshire, England, RG7 1NT). With the recommendation tool Dynamic Yield, our website is optimized based on Art. 6 Paragraph 1 lit. We use the page content you have called up to recommend equivalent or thematically related products or other content that is relevant to you.
For this purpose, Dynamic Yield collects pseudonymized information about your activities on our website. Cookies are used here, through which exclusively pseudonymized information is stored under a randomly generated ID (pseudonym). Your IP addresses are only saved anonymously. A direct personal reference is therefore not possible.
You can prevent the collection by Dynamic Yield by clicking this link.An opt-out cookie is set that prevents the future collection of data from your visit to this website.
You can also find further information on the tracking technology used under the following link: https://www.dynamicyield.com/platform-privacy-policy/
10. Using Google Customer Reviews
We work with Google as part of the "Google Customer Reviews" program. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). The program gives us the opportunity to obtain customer reviews from users of our website. After making a purchase on our website, you will be asked whether you would like to take part in a Google email survey. If you give your consent in accordance with Article 6 (1) (a) GDPR, we will send your email address to Google. You will receive an email from Google Customer Reviews asking you to rate the buying experience on our website. The rating you submitted is then combined with our other ratings and displayed in our Google customer reviews logo and in our Merchant Center dashboard; it is also used for Google seller ratings. As part of the use of Google customer reviews, personal data may also be transmitted to the servers of Google LLC. come in the US.
You can revoke your consent at any time by sending Google or us a message.
In case personal data is transmitted to Google LLC. based in the USA, Google LLC. is certified for the US-European data protection agreement "Privacy Shield", which guarantees compliance with the data protection level applicable in the EU. A current certificate can be viewed here: https://www.privacyshield.gov/list
Further information on Google's data protection in connection with the Google Customer Reviews program can be found under the following link: https://support.google.com/merchants/answer/7188525?hl=de
You can find more information’s about the data protection of Google Seller Ratings under the following link: https://support.google.com/adwords/answer/2375474
11. How can you enforce your data protection rights?
If you have any questions about the processing of your personal data by us, we will provide you with information about the data relating to you (Art. 15 GDPR).
In addition, if the legal requirements are met, you have the right to correction (Art. 16 GDPR), deletion (Art. 17 GDPR), restriction of processing (Art. 18 GDPR), contradiction (Art. 21 GDPR) and the right to data portability (Art. 20 GDPR).
In all these cases, please contact our data protection officer (see 2. above under the communication details).
You have the right to lodge a complaint to the responsible data protection supervisory authority (Art. 77 GDPR, Section 19 BDSG).
From time to time it is necessary to adapt the content of the present information on data protection for data collected in the future. We therefore reserve the right to change this information at any time. We will also publish the changed version of the data protection notice here. If you visit us again, you should therefore read the data protection information again.
Last modified: 11.11.2021