Responsible for data processing is:
Happi Wandeu, Marie Claudine
Matthias Claudius Weg, 1
Oerlinghausen

info@joyout.de

Phone: 017645816022

We appreciate your interest in our online shop. The protection of your privacy is very important to us. Below, we inform you in detail about the handling of your data.

1. Access data and hosting

You can visit our websites without providing any personal information. Each time a website is accessed, the web server automatically saves a so-called server log file, which contains, for example, the name of the requested file, your IP address, the date and time of access, the amount of data transferred, and the requesting provider (access data) and documents the access. This access data is evaluated exclusively for the purpose of ensuring trouble-free operation of the site and improving our offer. This serves to protect our legitimate interests in a correct presentation of our offer, which are predominant in the context of a balancing of interests, in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR. All access data will be deleted no later than seven days after the end of your visit to the site.

2. Data processing for contract execution and contact

2.1 Data processing for contract execution

For the purpose of contract execution in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR, we collect personal data if you voluntarily provide us with this data as part of your order. Mandatory fields are marked as such, because in these cases we absolutely need the data for contract execution and cannot send the order without them. What data is collected can be seen from the respective input forms.

Further information on the processing of your data, in particular on the transfer to our service providers for the purpose of order, payment and shipping processing, can be found in the following sections of this privacy policy. After complete execution of the contract, your data will be restricted for further processing and deleted after the expiry of the tax and commercial law retention periods in accordance with Art. 6 Para. 1 S. 1 lit. c GDPR, unless you have expressly consented to further use of your data in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR or we reserve the right to further data use that is legally permitted and about which we inform you in this declaration.

2.2 Customer account

If you have given your consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR by deciding to open a customer account, we will use your data for the purpose of opening a customer account and for storing your data for further future orders on our website. You can delete your customer account at any time either by sending a message to the contact option described in this privacy policy or by using a function provided for this purpose in the customer account. After deletion of your customer account, your data will be deleted, unless you have expressly consented to further use of your data in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR or we reserve the right to further data use that is legally permitted and about which we inform you in this declaration.

2.3 Contacting us

As part of customer communication, we collect personal data to process your inquiries in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR if you voluntarily provide us with this data when contacting us (e.g., via contact form or email). Mandatory fields are marked as such, because in these cases we absolutely need the data to process your contact. What data is collected can be seen from the respective input forms. After your inquiry has been fully processed, your data will be deleted, unless you have expressly consented to further use of your data in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR or we reserve the right to further data use that is legally permitted and about which we inform you in this declaration.

3. Data processing for shipping

For the fulfillment of the contract in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR, we pass on your data to the shipping service provider commissioned with the delivery, insofar as this is necessary for the delivery of ordered goods.

Data transfer to shipping service providers for the purpose of shipping notification

If you have given us your express consent to this during or after your order, we will pass on your e-mail address and telephone number to the selected shipping service provider based on this consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR, so that they can contact you before delivery for the purpose of delivery notification or coordination.
The consent can be revoked at any time by sending a message to the contact option described in this privacy policy or directly to the shipping service provider at the contact address listed below. After revocation, we will delete the data you provided for this purpose, unless you have expressly consented to further use of your data or we reserve the right to further data use that is legally permitted and about which we inform you in this declaration.

DPD Deutschland GmbH
Wailandtstraße 1
63741 Aschaffenburg
Germany

DHL Paket GmbH
Sträßchensweg 10
53113 Bonn
Germany

4. Data processing for payment processing

We work with the following partners for payment processing in our online shop: technical service providers, credit institutions, payment service providers.

4.1 Data processing for transaction processing

Depending on the selected payment method, we pass on the data necessary for processing the payment transaction to our technical service providers, who work for us as part of order processing, or to the commissioned credit institutions or to the selected payment service provider, insofar as this is necessary for processing the payment. This serves to fulfill the contract in accordance with Art. 6 Para. 1 S. 1 lit. b GDPR. In some cases, the payment service providers collect the data required for payment processing themselves, e.g., on their own website or via technical integration in the order process. In this respect, the privacy policy of the respective payment service provider applies.
If you have any questions about our partners for payment processing and the basis of our cooperation with them, please contact the contact option described in this privacy policy.

4.2 Data processing for the purpose of fraud prevention and optimization of our payment processes

If necessary, we pass on further data to our service providers, which they use together with the data necessary for payment processing as our processors for the purpose of fraud prevention and optimization of our payment processes (e.g., invoicing, processing of disputed payments, support for accounting). This serves, in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR, to protect our legitimate interests in protecting ourselves against fraud and in efficient payment management, which are predominant in the context of a balancing of interests.

4.3 Identity and credit check when selecting Klarna payment services

Klarna Direct Debit
If you choose to use the payment services of Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden (hereinafter Klarna), we ask for your consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR, that we may transmit the data necessary for payment processing and an identity and credit check to Klarna. In Germany, for identity and credit checks, the credit agencies named in Klarna's privacy policy may be used. Klarna uses the information received about the statistical probability of a payment default for a balanced decision on the establishment, execution or termination of the contractual relationship. You can revoke your consent at any time by sending a message to the contact option mentioned in this privacy policy. This may result in us no longer being able to offer you certain payment options. You can also revoke your consent to this use of personal data with Klarna at any time.

5. Email advertising

Sending review requests by email

If you have given us your express consent to this during or after your order in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR, we will use your email address to request a review of your order via the review system we use. This consent can be revoked at any time by sending a message to the contact option described in this privacy policy or via a dedicated link in the review request.

The review requests may also be sent by our service provider, Trusted Shops GmbH Subbelrather Str. 15C, 50823 Cologne (Trusted Shops).

When sending review requests, we receive information on the respective status from Trusted Shops (e.g., whether the review request was sent and whether it arrived). This is done in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR to fulfill our legitimate interest in receiving information about review invitations in order to make optimizations based on this, and to fulfill the legitimate interest of Trusted Shops to offer this service.

We are jointly responsible with Trusted Shops for sending review requests and for collecting and displaying review and status information.

Within the framework of the joint responsibility between us and Trusted Shops GmbH, please contact Trusted Shops GmbH preferably for data protection questions and to assert your rights. Their contact options can be found here. Further information on data protection can be found at the following link here. Regardless, you can also always contact us using the contact option described in this privacy policy. Your request will then, if necessary, be forwarded to the other responsible party for a response.

Email advertising with newsletter subscription If you subscribe to our newsletter, we use the data required for this or separately provided by you to send you our email newsletter regularly based on your consent in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR. You can unsubscribe from the newsletter at any time either by sending a message to the contact option described below or via a dedicated link in the newsletter. After unsubscribing, we will delete your email address, unless you have expressly consented to further use of your data or we reserve the right to further data use that is legally permitted and about which we inform you in this declaration."

6. Integration of the Trusted Shops Trustbadge/other widgets

The Trusted Shops Trustbadge is integrated on this website to display our Trusted Shops seal of approval and to offer Trusted Shops products to buyers after an order.

This serves to protect our legitimate interests in optimal marketing by enabling secure shopping, which are predominant in the context of a balancing of interests, in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR. The Trustbadge and the services advertised with it are an offer of Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne (Trusted Shops), with whom we are jointly responsible for data protection in accordance with Art. 26 GDPR. In these data protection notices, we will inform you below about the essential contractual contents in accordance with Art. 26 Para. 2 GDPR.

The Trustbadge is provided by a US-American CDN provider (Content Delivery Network) as part of a joint responsibility. An adequate level of data protection is ensured by standard data protection clauses and further contractual measures. Further information on the data protection of Trusted Shops GmbH can be found here.

When the Trustbadge is called up, the web server automatically stores a so-called server log file, which also contains your IP address, the date and time of the call, the amount of data transferred and the requesting provider (access data) and documents the call. The IP address is anonymized immediately after collection, so that the stored data cannot be assigned to your person. The server log file is stored in a security database for the analysis of security anomalies and is automatically deleted or anonymized at the latest 90 days after creation. This serves, in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR, the legitimate interest of us and Trusted Shops in preventing abuse and fraud, optimizing offers and websites, and ensuring trouble-free operation of the website or the Trustbadge or other widgets from Trusted Shops.

Further personal data will be transferred to Trusted Shops GmbH if you decide to use Trusted Shops products after completing an order or have already registered for their use. For this purpose, personal data is automatically collected from the order data. Whether you, as a buyer, are already registered for product use is automatically checked on the basis of a neutral parameter, the email address hashed by a cryptographic one-way function. The email address is converted into this hash value, which cannot be decrypted by Trusted Shops, before transmission. After checking for a match, the parameter is automatically deleted.

This serves to check whether you are already registered for services with Trusted Shops GmbH and is therefore necessary for the fulfillment of our and Trusted Shops' predominant legitimate interests in providing the buyer protection linked to the specific order and the transactional review services in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR. If this is the case, further processing takes place in accordance with the contractual agreement between you and Trusted Shops. If you are not yet registered for the services, you will subsequently have the opportunity to do so for the first time. Further processing after successful registration also depends on the contractual agreement with Trusted Shops. If you do not register, all transmitted data will be automatically deleted by Trusted Shops and a personal reference will then no longer be possible.

In the context of the joint responsibility existing between us and Trusted Shops GmbH, please preferably contact Trusted Shops GmbH for data protection questions and to assert your rights. You can find their contact details here. Further information on data protection can be found by clicking the following link here. Irrespective of this, you can always contact us using the contact details provided in this privacy policy. Your request will then be forwarded to the other controller for a response, if necessary.

7. Social Media

7.1 Social Plugins from Facebook, Instagram, Whatsapp

Social buttons from social networks are used on our website. These are only integrated into the page as HTML links, so that no connection with the servers of the respective provider is established when you access our website. If you click on one of the buttons, the website of the respective social network will open in a new window of your browser. There you can, for example, click the Like or Share button.

7.2 Our online presence on Facebook, Instagram

If you have given your consent to the respective social media operator in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, when you visit our online presences on the social media platforms mentioned above, your data will be automatically collected and stored for market research and advertising purposes, from which usage profiles will be created using pseudonyms. These can be used, for example, to place advertisements within and outside the platforms that are presumed to match your interests. Cookies are generally used for this purpose. For detailed information on the processing and use of data by the respective social media operator, as well as contact options and your rights and settings options for protecting your privacy, please refer to the privacy policies of the providers linked below. If you still need help with this, you can contact us.

Facebook is a service of Facebook Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland ("Facebook Ireland"). The information automatically collected by Facebook Ireland about your use of our online presence on Facebook is generally transferred to a server of Facebook, Inc., 1601 Willow Road, Menlo Park, California 94025, USA, and stored there. There is no adequacy decision from the European Commission for the USA. Our cooperation with them is based on standard data protection clauses of the European Commission. The data processing in the context of visiting a Facebook Fanpage is based on an agreement between jointly responsible parties according to Art. 26 GDPR. Further information (information on Insights data) can be found here.

Instagram is a service of Facebook Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland ("Facebook Ireland"). The information automatically collected by Facebook Ireland about your use of our online presence on Instagram is generally transferred to a server of Facebook, Inc., 1601 Willow Road, Menlo Park, California 94025, USA, and stored there. There is no adequacy decision from the European Commission for the USA. Our cooperation with them is based on standard data protection clauses of the European Commission. The data processing in the context of visiting an Instagram Fanpage is based on an agreement between jointly responsible parties according to Art. 26 GDPR. Further information (information on Insights data) can be found here.

8. Contact options and your rights

8.1 Your rights

As a data subject, you have the following rights:

• in accordance with Art. 15 GDPR, the right to request information about your personal data processed by us to the extent specified therein;
• in accordance with Art. 16 GDPR, the right to demand the immediate rectification of inaccurate personal data stored by us or the completion of incomplete personal data;
• in accordance with Art. 17 GDPR, the right to demand the erasure of your personal data stored by us, unless further processing is necessary
  • for exercising the right to freedom of expression and information;
  • for compliance with a legal obligation;
  • for reasons of public interest, or
  • for the establishment, exercise or defence of legal claims;
• in accordance with Art. 18 GDPR, the right to demand the restriction of the processing of your personal data, insofar as
  • the accuracy of the data is contested by you;
  • the processing is unlawful, but you oppose its erasure;
  • we no longer need the data, but you require them for the establishment, exercise or defence of legal claims, or
  • you have objected to the processing in accordance with Art. 21 GDPR;
• in accordance with Art. 20 GDPR, the right to receive your personal data, which you have provided to us, in a structured, commonly used and machine-readable format or to demand its transmission to another controller;
• in accordance with Art. 77 GDPR, the right to lodge a complaint with a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters.

8.2 Contact options

If you have any questions about the collection, processing or use of your personal data, for information, rectification, restriction or erasure of data, as well as revocation of granted consents or objection to a specific data use, please contact us directly using the contact details in our impressum.

Privacy policy created with the Trusted Shops legal text generator in cooperation with FÖHLISCH Rechtsanwälte.