As at: 10.01.2016
Thank you for your interest in the Miss Lashes & Miss Brows Online Shop. We want you to feel secure when you visit our website. To ensure this is the case, we comply with the provisions of the German Data Protection Act (BDSG) and the German Telemedia Act (TMG).
Responsible body under the terms of the BDSG
The responsible body under the terms of the BDSG is Miss Lashes, Johanniterstr. 5, 72160 Horb am Neckar, Germany (hereinafter “Miss Lashes”). For enquiries or questions concerning data protection, you can email us at firstname.lastname@example.org or email@example.com.
Collection, processing and use of personal data without registration
If you visit our website without entering any personal data we cannot identify your identity. In this case, we only receive details of the communication process from your browser, without any concrete reference to specific individuals (e.g. IP address). We collect, store and process your data:
- to enable you to access our website and allow us to perform the services which you use and which are provided on our website,
- to analyse, adjust and improve our services, content and advertising.
Collection, processing and use of personal data
When you share your personal data with us while you register and open a customer account, place an order or send us a message, we collect and store these data to the extent necessary for us to perform the contractual services. In general, the use of our website does not require you to provide personal data. However, in order to be able to provide our services, we may need your personal data. This applies both to the sending of information material or ordered goods as well as to the answering of individual inquiries. If you entrust us with the provision of a service or the dispatch of goods, we collect and store your personal data only as far as necessary for the provision of the service or the execution of the contract. It may be necessary to pass on your personal data to companies that we use to provide the service or to handle the contract. These are, for example, transport companies or other service providers. If we perform any of the activities described below or other actions or services, we would like to collect and store your personal data and will ask you for your express consent at the appropriate point on our website:
- Send a newsletter
- Being part in competitions
- creditworthiness or age test to enable our services
- payment methods
- Personalization of our website
- other services and offerings, for which data collection and your explicit consent is required.
After complete contract processing, your data will be blocked and will be deleted after expiration according to German tax and commercial regulations, unless you have expressly agreed to any additional data usage. If you have registered with your e-mail address for our newsletter, we will use your e-mail address for our own advertising purposes beyond the contract execution until you unsubscribe from the newsletter.
Transfer of personal data to third parties
We never transfer your personal data to third parties unless you have given prior consent or transfer is permitted by law. In particular, we never transfer your personal data or e-mail address to third parties for advertising purposes or address trading.
In some cases we use external service providers for technical (e.g. technical website hosting) or other services. We supply these service providers with personal data only to the extent required for them to perform their services for us. Our external service providers are contractually obliged to comply with data protection and data security regulations.
Cookies, web beacons and similar processes
Cookies are small files stored to your web access device. They do not contain any personal data. Some of the cookies we use are "session cookies", which are automatically deleted when you end a browser session. Other cookies remain in your computer system and allow us or our partner companies to recognize your browser at your next visit (“persistent cookies”). You can configure your browser to notify you when you receive a cookie and then decide whether to accept it, accept specific cookies only, or refuse to accept cookies altogether. Refusal to accept cookies may impair the range of functions available on our website.
Web beacons are small graphic image files (“pixels”) which can be integrated into our website to record user behaviour. Other similar processes include Flash cookies, HTML5 cookies or other local (browser or device-based) storage methods that can – like cookies – store data in your browser or device to recognise your browser or device on your next visit or during a session.
Targeting, tracking, analysis
We use tracking and analysis technologies to collect statistical data about the use of our website and optimise our content and services accordingly. We can also use these technologies to provide content (including advertising) on our own or external websites that is targeted at your interests.
Information that is supplied by your browser is collected and evaluated during this process. The data are collected using cookies, web beacons or similar processes (see above, Section 6).
Analysis, tracking and targeting are always performed as anonymised or pseudonymised processes. No user profiles are compiled from your personal data. We may work with external service providers that are authorised to use tracking and analysis technology with our permission. These service providers support us in providing our own content and advertising, and compile anonymised website statistics and analyses for us. We do not permit these service providers to collect personal data from our website for their own purposes.
This website particularly uses Google Analytics, a web analysis service by Google Inc. ("Google"). Google Analytics uses "cookies", text files that are stored on your computer and allow your use of the website to be analysed. The information about your visit collected by the cookie is generally transferred to a Google server in the USA and saved there. However, if this website has activated IP anonymisation, Google abbreviates your IP address within member states of the European Union or in other signatory states of the Agreement on the European Economic Area. The full IP address will only be transferred to a Google server in the USA and abbreviated there in exceptional cases.
Google will use the information collected on behalf of Miss Lashes to evaluate your use of the website, to compile reports about your activities within this site, and to provide further services for the website operator related to use of the website and Internet use. Google will under no circumstances associate the IP address transmitted by your browser within the operations of Google Analytics with other Google data. You can prevent the installation of cookies by entering the corresponding setting in your browser software. However, please note that in this case you may not be able to use the complete range of functions of this website to their full extent. By using this website you confirm your consent to Google’s processing of the data collected in relation to your visit in the manner described above and for the purpose described above.
You can prevent Google Analytics from collecting and using your IP address. To do this, you can install an add-on program for your browser. For a download option and further information, visit http://tools.google.com/dlpage/gaoptout?hl=de.
Please note that on this website Google Analytics has been extended by the code _anonymizeIp();“ to ensure all IP address evaluation is anonymised.
Social media plugins
We use social plugins from the following social media providers on our website:
- Facebook “Like”: operated by: Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA.
- Google+: operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
- Twitter: operated by Twitter, Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA.
- YouTube, operated by YouTube LLC, domiciled at 901 Cherry Avenue, San Bruno, CA 94066, USA.
- Pinterest, operated by Pinterest Inc., 808 Brannan Street, San Francisco, CA 94103, USA.
- Instagram: operated by Instagram Inc., 1601 Willow Road, Menlo Park, California 94025, USA.
Social plugins are software modules developed by social media services which we have integrated into our website. Social plugins use your browser to connect directly to the servers of the social media provider in question. The connection is used to transmit the information to the social media provider that you have accessed our website page containing the social plugin. If you are registered with and logged into the social media provider in question at the time of your visit to our website, the social media provider can assign your visit and your further interaction with the social plugin (e.g. clicking “like”) to your user profile (e.g. your Facebook account). If you are not registered with or logged into the social media provider, the provider may store your IP address.
To prevent transmission of this information to the social media service and protect your privacy, we have installed “Shariff”, a privacy solution that only sets up a direct contact between you and the social network when you actively click the Share button. For more information, visit http://heise.de/-2467514 (German) or https://github.com/heiseonline/shariff (English).
For more information from Facebook about using the plugin and the social media service, visit: http://developers.facebook.com/plugins
For more information from Facebook about its data use policy, see: http://www.facebook.com/about/privacy For more information from Google about using the plugin and the social media service, visit: https://developers.google.com/+/web/buttons-policy.
Twitter’s data privacy information can be viewed at https://twitter.com/privacy.