Privacy Policy
1. General Information
The protection of your personal data is particularly important to us.
We handle your personal data confidentially and in accordance with the statutory data protection regulations, especially the General Data Protection Regulation (GDPR), as well as this privacy policy.
Personal data is any information by which you can be personally identified.
Responsible entity under the GDPR:
Abstilla e.K.
Dorfstraße 28
24870 Ellingstedt
Germany
Owner: Yasmin Fink
E-Mail: [Insert e-mail address]
2. Data collection when visiting the website
Server log files
When you access our website, information is automatically collected by the hosting provider and stored in so-called server log files. These include:
Browser type and version
Operating system used
Referrer URL
Hostname of the accessing computer
Time of the server request
IP address
These data are used solely for the technical provision and security of the website and are not merged with other data sources.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest)
3. Contact
If you send inquiries via e-mail or contact form, your details are stored for the purpose of processing the inquiry and for possible follow-up questions.
Legal basis:
Art. 6(1)(b) GDPR (contract / pre-contractual measures)
or
Art. 6(1)(f) GDPR (legitimate interest)
4. Processing in the context of orders (online shop)
When you order products via our website, we process the following data:
First and last name
Address
E-mail address
Payment data
If applicable, phone number
These data are necessary for contract processing, delivery, and payment.
Legal basis: Art. 6(1)(b) GDPR
Disclosure is made exclusively to:
Shipping service providers (e.g., DHL)
Payment providers
Tax advisors (within the scope of legal obligations)
5. Payment service providers
Depending on the chosen payment method, payment data is transmitted to the respective payment provider.
The privacy policy of the respective payment provider applies.
6. Cookies
Our website uses cookies. Cookies are small text files stored on your device.
We differentiate between:
Technically necessary cookies (required for website functionality)
Optional cookies (e.g., analytics, marketing – only with consent)
Legal basis:
Art. 6(1)(f) GDPR (technically necessary)
Art. 6(1)(a) GDPR (consent)
You can change your cookie settings at any time.
7. Analytics tools
If analytics tools (e.g., Google Analytics) are used, this is only done with your explicit consent according to Art. 6(1)(a) GDPR.
IP addresses are anonymized wherever possible.
8. Social media
Our website may contain links to social networks.
Data is only transmitted to the respective provider when you actively click on a link.
9. Storage duration
Personal data is only stored as long as necessary to fulfill the respective purpose or if statutory retention periods apply (e.g., commercial and tax law periods of up to 10 years).
10. Your rights
Under the GDPR, you have the following rights:
Right of access (Art. 15 GDPR)
Right to rectification (Art. 16 GDPR)
Right to erasure (Art. 17 GDPR)
Right to restriction of processing (Art. 18 GDPR)
Right to data portability (Art. 20 GDPR)
Right to object (Art. 21 GDPR)
Right to lodge a complaint with a supervisory authority
Competent supervisory authority in Schleswig-Holstein:
Independent State Centre for Data Protection Schleswig-Holstein (ULD)
Holstenstraße 98
24103 Kiel
Germany
11. Data security
We use the widespread SSL/TLS encryption method during website visits.
You can recognize this by the “https://” designation in your browser’s address bar.
12. Currency and changes
This privacy policy is currently valid and has the status: [Insert month year].
We reserve the right to adapt it in the event of changes in the legal situation or our offer.
