Privacy policy
1. Scope
This privacy policy informs you, in accordance with the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG), and the Telemedia Act (TMG), about the nature, scope, and purpose of the processing of personal data by the website operator:
chic andina
Owner: Jimena Zabala de Braga
Bleichstr. 18B
DE-86153 Augsburg
Email: info@chicandina.com
The website operator takes the privacy of your personal data very seriously and treats your personal data confidentially and in accordance with legal regulations.
Please note that data transmission over the internet (e.g., when communicating via email) can have security gaps. Complete protection of data from third-party access is not possible.
2. Access Data
The website operator or website provider collects data about access to the website and stores these as "server log files." The following data is logged:
- Visited website
- Time of access
- Amount of data sent in bytes
- Source/referer from which you accessed the page
- Browser used
- Operating system used
- IP address used
The processing of this data is based on Article 6 (1) lit. f GDPR. The website operator has a legitimate interest in the error-free display and optimization of the website, for which server log files must be collected.
3. Cookies
This website uses cookies. Cookies are small text files that are stored on your device and used by your browser.
- Technically necessary cookies: These cookies are required for the functionality of the website (Article 6 (1) lit. f GDPR).
- Optional cookies (e.g., analysis/marketing): These are activated only with your explicit consent (Article 6 (1) lit. a GDPR).
Cookie Settings:
When you first visit the website, a cookie banner will appear, where you can set your preferences. You can delete cookies at any time via your browser settings.
4. Handling of Personal Data
The website operator collects, uses, and transfers your personal data only if this is legally permitted or you have given your consent. Personal data includes, for example:
- Name, email address, phone number
- Address data (for orders)
- Payment information
Processing is based on Article 6 (1) lit. b GDPR (contract fulfillment) or Article 6 (1) lit. a GDPR (consent).
5. User Account
You can create a password-protected customer account. This is used for managing your orders and order history.
After leaving the online store, you will be automatically logged out.
The operator is not liable for password misuse unless caused by the operator.
6. Ordering Process
To process your orders, we store the following data:
- Name, first name
- Address
- Payment data
- Email address
This data is only shared with third-party service providers necessary for order processing (e.g., shipping providers, payment providers).
The storage of your data is based on Article 6 (1) lit. b GDPR. As required by law, your data will be deleted as soon as it is no longer needed.
7. Credit Check
To safeguard our legitimate interests (Article 6 (1) lit. f GDPR), we may conduct a credit check when necessary. We rely on third-party service providers for this.
The following data may be shared:
- Name, address, date of birth
Processing is solely to prevent payment defaults.
8. Google Analytics
This website uses Google Analytics for analyzing website usage. Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
IP anonymization is enabled so that your IP address is truncated within the EU/EEA.
Data processing occurs only with your consent (Article 6 (1) lit. a GDPR).
To deactivate Google Analytics:
- You can disable the storage of cookies in your browser.
- Alternatively, you can install a browser plugin: https://tools.google.com/dlpage/gaoptout?hl=en.
9. Use of Social Media Plugins
Our website may use social media plugins from Facebook, Twitter, and Google.
Processing is based on your consent (Article 6 (1) lit. a GDPR).
To prevent linking your data with your social media account, please log out before using our website.
Further information can be found here:
- Facebook: https://www.facebook.com/about/privacy/
- Twitter: https://twitter.com/privacy
- Google: https://policies.google.com/privacy?hl=en
10. User Rights
As a user, you have the following rights under the GDPR:
- Access: Free access to the personal data stored (Article 15 GDPR).
- Correction: Correction of incorrect or incomplete data (Article 16 GDPR).
- Deletion: Deletion of your data, unless there is a legal obligation to retain it (Article 17 GDPR).
- Restriction: Restriction of processing (Article 18 GDPR).
- Data Portability: Transfer of your data to you or a third party (Article 20 GDPR).
- Objection: Objection to the processing of your data (Article 21 GDPR).
Requests can be directed to: info@chicandina.com