DATA PROTECTION DECLARATION EU

DATA PROTECTION DECLARATION ACCORDING TO DSGVO

(Germany & Austria)

This privacy policy applies to visitors and customers of our online store residing in or accessing our online store from the European Union, in particular Germany and Austria, in accordance with the requirements of the General Data Protection Regulation (GDPR).

1. responsible person

Framework AG
Rothusstrasse 23
6331 Hünenberg
Switzerland
info@framework.ch

2. purposes and legal bases of the processing (Art. 6 GDPR)

We process your personal data for the following purposes and rely on the respective legal basis:

  • Contract fulfillment (Art. 6 para. 1 lit. b GDPR): Customer account, order processing, payment and delivery processes.
  • Legal obligations (Art. 6 para. 1 lit. c GDPR): Retention obligations under tax law, fraud prevention.
  • Consent (Art. 6 para. 1 lit. a GDPR): Direct marketing, newsletters, surveys, analysis, profiling.
  • Legitimate interest (Art. 6 para. 1 lit. f GDPR): Improvement of the user experience, IT security, market analysis.

You can revoke your consent at any time with effect for the future.

3. Cookies & tracking

Our website uses Cookies and similar technologies. You can give your consent to the use of Cookies on your first visit via our Cookie. Technically necessary Cookies are processed on the basis of Art. 6 para. 1 lit. f GDPR.

Further information can be found in ourCookie].

4. recipients of data & transfer to third countries

We use the following external service providers to process and optimize our online store:

  • Shopify Inc, 151 O'Connor Street, Ground Floor, Ottawa, ON K2P 2L8, Canada - for the provision of the store (data transfer pursuant to Art. 46 GDPR by means of standard contractual clauses).
  • Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland - for analysis and advertising services.
  • Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland - for marketing and social media services.

Payment service provider

  • Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden - to process payments via the payment options "Klarna Pay Later", "Klarna Pay Now" and "Klarna Slice It". Personal data (name, address, e-mail address, telephone number, payment information, IP address and order data) are transmitted to Klarna. The processing is carried out on the basis of Art. 6 para. 1 lit. b GDPR (contract fulfillment) and, if a credit check is required, on the basis of Art. 6 para. 1 lit. f GDPR (legitimate interest in avoiding payment defaults). Further information can be found at: https://www.klarna.com/de/datenschutz/.
  • Mollie B.V., Keizersgracht 126, 1015 CW Amsterdam, Netherlands - for the processing of payments (e.g. credit card, SEPA direct debit, SOFORT, iDEAL, Bancontact, TWINT). Payment data, order information and customer data are transmitted to carry out the transaction. Processing on the basis of Art. 6 para. 1 lit. b GDPR. Further information: https://www.mollie.com/de/privacy.
  • TWINT AG, Stauffacherstrasse 41, 8004 Zurich, Switzerland - for processing payments via TWINT or TWINT Pay Later (in cooperation with Swissbilling SA, Rue du Caudray 4, 1020 Renens, Switzerland). Payment data, order information and customer data are transmitted. Processing on the basis of Art. 6 para. 1 lit. b GDPR. Further information: https://www.twint.ch/datenschutz/.
  • Shopify Payments (Stripe Payments Europe Ltd.), 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland - for processing credit card payments (Visa, Mastercard, Amex) and other methods offered by Shopify Payments. Payment data, order information and customer data are transmitted. Processing on the basis of Art. 6 para. 1 lit. b GDPR. Further information: https://stripe.com/de/privacy.
  • Wallee AG, General-Guisan-Strasse 6, 6300 Zug, Switzerland - for processing payments via various local and international payment methods (e.g. credit cards, TWINT, PostFinance, Apple Pay, Google Pay). Payment data, order information and customer data are transmitted to Wallee to process the transaction. Processing on the basis of Art. 6 para. 1 lit. b GDPR. Further information: https://wallee.com/datenschutz.

Transfers to third countries only take place if suitable guarantees are in place (standard contractual clauses pursuant to Art. 46 GDPR).

5. rights of data subjects (Art. 15 to 22 GDPR)

You have the right:

  • to information about your stored data
  • Correction of incorrect data
  • to erasure (right to be forgotten)
  • to restriction of processing
  • on data portability
  • to object to certain processing operations
  • to revoke your consent

6. right of appeal

You have the right to lodge a complaint with a data protection supervisory authority.

Responsible for Germany is e.g.:

Bayerisches Landesamt für Datenschutzaufsicht
Promenade 18, 91522 Ansbach, Germany
www.lda.bayern.de

7. contact data protection officer

Data Protection Officer
Framework AG
Rothusstrasse 23
6331 Hünenberg, Switzerland

info@framework.ch