Privacy policy
Privacy Policy
This privacy policy informs you about the nature, scope, and purpose of the processing of personal data (hereinafter referred to as "data") within our online offering and the associated websites, features, and content, as well as external online presences, such as our social media profiles (collectively referred to as the "online offering"). Regarding the terminology used, such as "processing" or "controller," we refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR).
Controller
SensoryBoost
Albert-Einstein-Straße 4
04600 Altenburg, Germany
📧 Business@SensoryBoost.de
👤 Managing Director/Owner: Benjamin Zeising
🔗 Link to the imprint: https://sensoryboost.de/policies/legal-notice
Types of Processed Data:
– Inventory data (e.g., names, addresses).
– Contact data (e.g., email, phone numbers).
– Content data (e.g., text input, photographs, videos).
– Usage data (e.g., visited websites, interest in content, access times).
– Meta/communication data (e.g., device information, IP addresses).
Categories of Data Subjects
Visitors and users of the online offering (hereinafter collectively referred to as "users").
Purpose of Processing
– Provision of the online offering, its features, and content.
– Responding to inquiries and communication with users.
– Security measures.
– Reach measurement/marketing.
Definitions of Key Terms
Personal Data:
All information relating to an identified or identifiable natural person (hereinafter referred to as "data subject"); a natural person is considered identifiable if they can be identified directly or indirectly, particularly through an identifier such as a name, identification number, location data, an online identifier (e.g., cookie), or one or more specific characteristics that express the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
Processing:
Any operation performed on personal data, whether or not by automated means. This includes collection, recording, organization, storage, adaptation, retrieval, consultation, use, disclosure, dissemination, alignment, restriction, erasure, or destruction.
Pseudonymization:
Processing personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data is not assigned to an identified or identifiable natural person.
Profiling:
Any automated processing of personal data used to evaluate certain personal aspects relating to a natural person, particularly to analyze or predict aspects concerning job performance, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.
Controller:
The natural or legal person, public authority, agency, or other body that determines the purposes and means of processing personal data, either alone or jointly with others.
Processor:
A natural or legal person, public authority, agency, or other body that processes personal data on behalf of the controller.
Relevant Legal Bases
In accordance with Article 13 of the GDPR, we inform you of the legal bases for our data processing. Unless otherwise stated in this privacy policy, the following applies: The legal basis for obtaining consent is Article 6(1)(a) and Article 7 GDPR. The legal basis for processing to fulfill our services, perform contractual measures, and respond to inquiries is Article 6(1)(b) GDPR. The legal basis for processing to fulfill our legal obligations is Article 6(1)(c) GDPR, and the legal basis for processing to protect our legitimate interests is Article 6(1)(f) GDPR. If the processing of personal data is required to protect the vital interests of the data subject or another natural person, Article 6(1)(d) GDPR serves as the legal basis.
Storage Duration and Deletion of Data
We store personal data only as long as necessary for the respective processing purposes or as required by law. The storage duration is determined by the following criteria:
✔ Order data: 10 years in accordance with § 147 AO (Tax Law).
✔ Contact inquiries: 1 year after processing.
✔ Marketing & tracking data: 6 months (if no further use occurs).
✔ Customer account data: Until deleted by the user or after 3 years of inactivity.
✔ Accounting and tax data: 10 years in accordance with § 257 HGB and § 147 AO.
✔ Data from cookies & tracking technologies: Depending on the type of cookie, between 1 day and a maximum of 2 years.
After expiration of the respective periods, the data is deleted or anonymized in accordance with legal requirements.
Security Measures
In accordance with Article 32 GDPR, we implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, taking into account the state of technology, implementation costs, and the nature, scope, circumstances, and purposes of processing, as well as the varying likelihood and severity of risks to individuals’ rights and freedoms.
Our security measures include:
✔ Ensuring the confidentiality, integrity, and availability of data by controlling physical access to the data, as well as access rights, data input, transfer, ensuring availability, and data separation.
✔ Procedures that allow the exercise of data subject rights, deletion of data, and response to threats to data security.
✔ Consideration of data protection principles in the selection and development of hardware, software, and processes, in accordance with the principles of "privacy by design" and "privacy by default" (Article 25 GDPR).
Collaboration with Processors and Third Parties
If we disclose, transmit, or otherwise provide access to data to other individuals and companies (processors or third parties) within the scope of our processing, this is done only based on a legal permission (e.g., if data transfer to third parties, such as payment service providers, is required for contract fulfillment pursuant to Article 6(1)(b) GDPR), if you have consented, if a legal obligation requires it, or based on our legitimate interests (e.g., using service providers, web hosts, etc.).
If we commission third parties with the processing of data on the basis of a so-called "data processing agreement," this is done based on Article 28 GDPR.
Data Transfers to Third Countries
We transfer personal data to entities in third countries (outside the European Union or the European Economic Area) only under the following conditions:
Adequacy Decision by the EU Commission: If the EU Commission has determined that a third country ensures an adequate level of data protection, data transfers are based on this decision (e.g., for Canada or Japan).
For data transfers to the USA and other third countries without an adequacy decision, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission. Where possible, we implement additional security measures such as encryption and pseudonymization to ensure data protection.
Additional Safeguards: If necessary, we implement further measures (e.g., encryption, pseudonymization) to enhance data security.
Explicit User Consent under Article 49(1)(a) GDPR: In exceptional cases, data is transferred only with your explicit consent (e.g., when using a service that is not otherwise secured).
USA & Third Countries
Since U.S. companies such as Google or Meta are not automatically subject to GDPR, it cannot be ruled out that U.S. authorities may access the data despite SCCs.
If you do not agree with this, you can disable tracking and external services in the cookie settings.
------------------------------------------------------------------------------------------------------------------------------
1. Access Data and Hosting
You can visit our website without providing any personal information. Each time you access a webpage, the web server automatically stores a so-called server log file containing, for example, the name of the requested file, your IP address, date and time of access, amount of data transferred, and the requesting provider (access data) to document the request.
These access data are evaluated exclusively for the purpose of ensuring the trouble-free operation of the website and improving our services. This serves our overriding legitimate interest in a correct presentation of our website in accordance with Article 6(1)(f) GDPR.
All access data will be deleted no later than seven days after your visit ends.
Hosting by Shopify
We use the shop system of the service provider Shopify International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland ("Shopify"), for the purpose of hosting and displaying the online shop based on processing on our behalf. All data collected on our website is processed on Shopify's servers. As part of the aforementioned Shopify services, data may also be transmitted for further processing to Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4, Canada, Shopify Data Processing (USA) Inc., Shopify Payments, or Shopify (USA) Inc. In the event that data is transferred to Shopify Inc. in Canada, an adequacy decision by the European Commission ensures an adequate level of data protection.
For further information on Shopify's data protection, please visit: https://www.shopify.com/legal/privacy. Further processing on servers other than those mentioned above only takes place within the scope set out below.
1.1 + Hosting
The services for hosting and displaying the website are partially provided by our service providers as part of processing on our behalf. Unless otherwise specified in this privacy policy, all access data and all data entered into forms on this website are processed on their servers. If you have questions about our service providers and the basis of our cooperation with them, please contact us via the contact information provided in this privacy policy.
Our service providers are located in and/or use servers in the following countries, where the European Commission has determined an adequate level of data protection: Canada.
Our service providers are also located in and/or use servers in the USA and other countries outside the EU and EEA. No adequacy decision by the European Commission exists for these countries. Our cooperation with these service providers is based on the European Commission’s Standard Contractual Clauses.
1.2 + Content Delivery Network (CDN) - Cloudflare
To reduce loading times, we use a Content Delivery Network ("CDN") for some of our services. This service delivers content, such as large media files, through regionally distributed servers of external CDN providers. As a result, access data is processed on the service providers’ servers. Our service providers act as processors on our behalf.
Our service providers are located in and/or use servers in countries outside the EU and EEA. No adequacy decision by the European Commission exists for these countries. Our cooperation with these service providers is based on the European Commission’s Standard Contractual Clauses.
If you have any questions about our service providers and the basis of our cooperation with them, please contact us using the contact information provided in this privacy policy.
2. Data Processing for Contract Execution and Contact
2.1 + Data Processing for Contract Execution
For the purpose of contract execution in accordance with Art. 6 (1) sentence 1 lit. b GDPR, we collect personal data when you voluntarily provide it to us as part of your order. Required fields are marked as such because we need this data to process the contract, and without it, we cannot complete your order. The specific data collected can be found in the respective input forms.
Further details on how we process your data, particularly regarding the transfer of data to our service providers for order processing, payment, and shipping, can be found in the following sections of this privacy policy. Once the contract has been fully executed, your data will be restricted for further processing and deleted after the retention periods required by tax and commercial law in accordance with Art. 6 (1) sentence 1 lit. c GDPR, unless you have expressly consented to further use of your data under Art. 6 (1) sentence 1 lit. a GDPR, or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this privacy policy.
2.2 + User Account
If you have given your consent in accordance with Art. 6 (1) sentence 1 lit. a GDPR by deciding to open a customer account, we will use your data for the purpose of account creation and storage of your data for future orders on our website.
You can delete your customer account at any time by sending a message to the contact address mentioned in this privacy policy or via a designated function in your account settings. After deletion of your customer account, your data will be erased unless you have explicitly consented to further use of your data under Art. 6 (1) sentence 1 lit. a GDPR, or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this privacy policy.
2.3 + Contact
As part of customer communication, we collect personal data to process your inquiries in accordance with Art. 6 (1) sentence 1 lit. b GDPR when you voluntarily provide this information to us (e.g., via contact form or email). Required fields are marked as such because, in these cases, we need the data to process your inquiry.
The specific data collected can be found in the respective input forms. Once your inquiry has been fully processed, your data will be deleted unless you have explicitly consented to further use of your data under Art. 6 (1) sentence 1 lit. a GDPR, or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this privacy policy.
2.3.1 Shopify Inbox
This website uses the live chat system of the following provider: Shopify International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland.
The processing of personal data transmitted via chat is carried out either in accordance with Art. 6 (1) lit. b GDPR, as it is necessary for contract initiation or execution, or in accordance with Art. 6 (1) lit. f GDPR due to our legitimate interest in providing effective customer support to our website visitors.
The data you transmit via chat will be deleted once the respective issue has been resolved, unless legal retention periods require otherwise.
Additionally, for the purpose of creating pseudonymized usage profiles, further information may be collected and analyzed using cookies. However, this data does not serve to personally identify you and will not be merged with other data sets. If this information is considered personal data, processing is carried out in accordance with Art. 6 (1) lit. f GDPR based on our legitimate interest in statistical analysis of user behavior for optimization purposes.
You can prevent the use of cookies by adjusting your browser settings. However, this may limit the functionality of our website.
You can object to the collection and storage of data for the purpose of creating a pseudonymized usage profile at any time with future effect.
Data is also transferred to: Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4, Canada.
We have concluded a data processing agreement with the provider to ensure the protection of our website visitors’ data and to prohibit unauthorized disclosure to third parties.
For data transfers to Canada, an adequate level of data protection is ensured by an adequacy decision of the European Commission.
2.4 + Shipping Processing / Shipping Notification
If you have given us your explicit consent during or after your order, we will share your email address and phone number with the selected shipping provider in accordance with Art. 6 (1) sentence 1 lit. a GDPR so that they can contact you prior to delivery for the purpose of shipment notification or coordination.
You can revoke your consent at any time by sending a message to the contact address specified in this privacy policy or directly to the shipping provider at the following address. After revocation, we will delete your data unless you have explicitly consented to further use or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this policy.
DHL Paket GmbH
Sträßchensweg 10
53113 Bonn, Germany
3. Data Processing for Payment and Transaction Processing
To process payments in our online store, we work with the following partners: technical service providers, financial institutions, and payment service providers.
3.1 + Data Processing for Transaction Execution
Depending on the selected payment method, we transmit the necessary data for processing the payment transaction to our technical service providers, who act as data processors on our behalf, or to the commissioned financial institutions or the selected payment service provider, as far as this is required for processing the payment. This serves to fulfill the contract in accordance with Art. 6 (1) sentence 1 lit. b GDPR. In some cases, payment service providers collect the necessary data for processing payments themselves, e.g., on their own websites or through a technical integration in the checkout process. The privacy policy of the respective payment service provider applies in these cases.
For any questions regarding our payment processing partners and the basis of our collaboration with them, please refer to the contact details provided in this privacy policy.
3.2 + Data Processing for Fraud Prevention and Optimization of Our Payment Processes
In certain cases, we may provide our service providers with additional data that they use, along with the data necessary for processing payments, as our data processors for fraud prevention and optimizing our payment processes (e.g., invoicing, handling of disputed payments, accounting support). This serves our legitimate interests in fraud prevention and efficient payment management in accordance with Art. 6 (1) sentence 1 lit. f GDPR.
3.3 + Identity and Credit Check with Klarna
Klarna (Direct Debit)
If you choose the payment services of Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden (hereinafter referred to as "Klarna"), we ask for your consent in accordance with Art. 6 (1) sentence 1 lit. a GDPR to transmit the necessary data for payment processing and an identity and credit check to Klarna. In Germany, Klarna may use credit agencies listed in Klarna’s privacy policy for identity and credit checks. The obtained information about the statistical probability of a payment default is used by Klarna to make a balanced decision regarding the initiation, execution, or termination of the contractual relationship.
You can revoke your consent at any time by sending a message to the contact details provided in this privacy policy. This may result in certain payment options no longer being available to you. You can also withdraw your consent for Klarna’s use of your personal data directly with Klarna.
3.4 Payment Service Amazon Pay
When paying via Amazon Pay, we transmit your payment data primarily to Amazon Payments Europe s.c.a. and secondarily to Amazon EU SARL, Amazon Services Europe SARL, and Amazon Media EU SARL, all based at 5, Rue Plaetis L 2338 Luxembourg (hereinafter referred to as "Amazon Payments").
Amazon Payments reserves the right to conduct a credit check. The result of the credit check regarding the statistical probability of a payment default is used by Amazon Payments to determine the provision of the respective payment method. The credit check may include probability values (so-called score values). If score values are included in the result of the credit check, these are based on a scientifically recognized mathematical-statistical method. The calculation of score values includes address data, among other factors.
Furthermore, Amazon Payments is entitled to transmit your data to unnamed third parties (such as banks, e-service providers, service partners, auditors, analytics providers, credit agencies, marketing partners, cloud service providers, retargeting providers, and affiliated companies).
For further privacy-related information, including the credit agencies used, please refer to Amazon Payments’ privacy policy: pay.amazon.com/de/help/201751600. The legal basis for this processing is Art. 6 (1) sentence 1 lit. b GDPR.
3.5 Payment Service PayPal
As part of the payment processing, when paying via PayPal, credit card via PayPal, direct debit via PayPal, or – if offered – "purchase on account" via PayPal, we transmit your payment data to PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter referred to as "PayPal"). PayPal reserves the right to conduct a credit check for the payment methods credit card via PayPal, direct debit via PayPal, or – if offered – "purchase on account" via PayPal. More information is available at: www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=de_DE#rAnnex.
The result of the credit check concerning the statistical probability of a payment default is used by PayPal to decide on the provision of the respective payment method. The credit report may contain probability values (so-called score values). If score values are incorporated into the result, they are based on a scientifically recognized mathematical-statistical process. The calculation of score values includes address data, among other factors.
Furthermore, PayPal is entitled to transmit your data to known third parties (such as banks, e-service providers, service partners, auditors, analytics providers, credit agencies, marketing partners, cloud service providers, retargeting providers, and affiliated companies) as well as unnamed third parties (www.paypal.com/de/webapps/mpp/ua/third-parties-list).
For further privacy-related information, including the credit agencies used, please refer to PayPal’s privacy policy: www.paypal.com/de/webapps/mpp/ua/privacy-full. The legal basis for this processing is Art. 6 (1) sentence 1 lit. b GDPR.
3.6 Shopify Payments (Apple Pay, Google Pay, etc.)
We use the payment service provider "Shopify Payments", 3rd Floor, Europa House, Harcourt Building, Harcourt Street, Dublin 2. If you choose a payment method provided by Shopify Payments, the payment is processed via the technical service provider Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland. We transmit the information you provided during the order process, including order details (name, address, account number, bank code, possibly credit card number, invoice amount, currency, and transaction number), to Stripe Payments Europe Ltd. in accordance with Art. 6 (1) lit. b GDPR. The transfer of your data is solely for the purpose of payment processing with Stripe Payments Europe Ltd. and only as far as necessary for this.
More information about Shopify Payments’ privacy policies can be found at: https://www.shopify.com/legal/privacy.
For privacy information about Stripe Payments Europe Ltd., please visit: https://stripe.com/de/privacy.
4. Integration of Third-Party Services and Content
Within our online offering, we use third-party content or service offers based on our legitimate interest (i.e., interest in the analysis, optimization, and economic operation of our online offering as defined by Art. 6 (1) lit. f GDPR) to integrate content and services, such as videos or fonts (hereinafter collectively referred to as “content”).
This always requires that the third-party providers of this content recognize the user’s IP address, as they cannot send the content to the user’s browser without it. The IP address is therefore required to display this content. We make an effort to use only content whose respective providers use the IP address solely to deliver the content. Third-party providers may also use so-called pixel tags (invisible graphics, also referred to as "web beacons") for statistical or marketing purposes. These "pixel tags" can be used to analyze visitor traffic on the pages of this website. The pseudonymized information may also be stored in cookies on the user’s device and may include technical information about the browser and operating system, referring web pages, visit time, and other details regarding the use of our online offering, as well as being linked with such information from other sources.
4.0 Judge.me Review Platform
To continuously improve the quality of our offering and enable our customers to make transparent purchasing decisions, we use the review platform Judge.me. This platform allows our customers to share their experiences with our products. The submitted reviews help us and other customers to better assess the quality and satisfaction of our products.
When using Judge.me, personal data such as your name and email address may be collected to ensure the authenticity of reviews. This data processing serves our legitimate interest in collecting feedback on our products and improving our services. Further details on data collection and usage by Judge.me can be found in the platform’s privacy policy.
4.1 YouTube
We embed videos from the platform YouTube, provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
📜 Privacy Policy: https://www.google.com/policies/privacy/
🚫 Opt-Out: https://adssettings.google.com/authenticated
4.2 GOOGLE
We integrate fonts (Google Fonts) provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
📜 Privacy Policy: https://www.google.com/policies/privacy/
🚫 Opt-Out: https://adssettings.google.com/authenticated
4.2.1 Google ReCaptcha
We integrate the bot detection function (ReCaptcha) provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, for security purposes, such as form submissions.
📜 Privacy Policy: https://www.google.com/policies/privacy/
🚫 Opt-Out: https://adssettings.google.com/authenticated
4.2.2 Google Fonts
We integrate fonts (Google Fonts) provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
📜 Privacy Policy: https://www.google.com/policies/privacy/
🚫 Opt-Out: https://adssettings.google.com/authenticated
4.2.3 Google Maps
To visually display geographical information, Google Maps collects data about your usage of the Maps functions, particularly your IP address and location data, which are transmitted to and processed by Google.
⚠ Note: We have no influence over this subsequent data processing by Google.
4.2.4 Google ADS
For advertising purposes in Google search results as well as on third-party websites, a Google Remarketing Cookie is set when you visit our website. This cookie automatically enables interest-based advertising by collecting and processing data (IP address, time of visit, device and browser information, as well as information on your website usage) and associating it with a pseudonymous cookie ID based on the pages you visit.
Further data processing only takes place if you have activated "personalized advertising" in your Google account settings. If you are logged into your Google account while visiting our website, Google may combine your data with Google Analytics data to create and define audience lists for cross-device remarketing.
For website analysis and event tracking, we use Google Ads Conversion Tracking to measure subsequent user behavior when you reach our website via a Google Ads advertisement. Cookies may be used to collect data (IP address, time of visit, device and browser information, as well as details on your website usage based on predefined events, such as visiting a page or signing up for a newsletter). Pseudonymous user profiles may be created from this data.
4.2.5 Google Analytics
We use Google Analytics, a web analytics service from Google LLC ("Google"), based on our legitimate interests (i.e., our interest in analyzing, optimizing, and operating our online offering economically, according to Art. 6 para. 1 lit. f GDPR). Google uses cookies to collect user data.
The information generated by the cookies about your use of this website is usually transmitted to a Google server in the USA and stored there.
Google is certified under the Privacy Shield Agreement, which guarantees compliance with European data protection laws: 📜 Privacy Shield Certification: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
Google processes this information on our behalf to evaluate the use of our website by users, to compile reports on activities within this website, and to provide other services related to the use of our website and the internet. Pseudonymous usage profiles can be created from the processed data.
We use Google Analytics with IP anonymization enabled. This means that Google shortens IP addresses within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before transmitting them. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there.
The IP address transmitted by the user's browser is not merged with other Google data. Users can prevent the storage of cookies by configuring their browser settings accordingly. Additionally, users can prevent the collection of data generated by cookies and related to their use of the website from being sent to Google and processed by Google by downloading and installing the following browser plugin: 🔗 Google Analytics Opt-Out Plugin: http://tools.google.com/dlpage/gaoptout?hl=de
Further information on data usage by Google, settings, and opt-out options
You can find more details about Google's data usage, configuration options, and opt-out choices in Google's Privacy Policy: 🔗 Google Privacy Policy: https://policies.google.com/technologies/ads 🔗 Google Ad Settings: https://adssettings.google.com/authenticated
User personal data is deleted or anonymized after 14 months.
Social Media Presence
We maintain online presences within social networks and platforms to communicate with customers, interested parties, and users who are active there and to inform them about our services. When accessing these networks and platforms, the terms and conditions and data processing policies of the respective operators apply.
Unless otherwise stated in this privacy policy, we process user data if they interact with us within social networks and platforms, for example, by posting content on our pages or sending us messages.
4.2.6 Google TAG MANAGER
In our privacy policy, we aim to provide you with detailed insights into the role of Google Tag Manager, why it is used on our website, and how it processes data.
About Google Tag Manager: This tool allows us to manage website tags through a central interface. Tags are small code snippets that help track user interactions on our website. These codes often come from Google services such as Google Ads or Google Analytics but can also originate from other providers. Their functions include: Collecting browser data Supplying marketing tools with information Integrating buttons Setting cookies Tracking users across different websites
Usage on our website: Efficient organization and management of our website are essential to us to offer the best possible experience to users. We use various tracking tools to gain insights into user preferences and areas for improvement. Google Tag Manager facilitates the integration and management of these tools, offering a user-friendly interface without requiring programming knowledge.
Data storage and management: It's important to note that Google Tag Manager itself does not set cookies or store data. It merely serves as an intermediary for the tags of different web analytics tools, which independently collect data. In the Tag Manager settings, we have agreed to allow Google to receive anonymized data on the usage of Google Tag Manager. However, this data does not include information collected by the tags themselves.
Server locations and data protection: Google stores data on globally distributed servers. For detailed information on server locations and data retention periods, please visit the relevant Google pages.
Your Privacy Options
Although Google Tag Manager itself does not collect data, the individual tracking tools we use provide options to manage or disable data collection. Details on how to do this can be found in our specific privacy texts for these tools.
Google complies with the EU-U.S. Privacy Shield Framework, ensuring the secure transfer of personal data. More information about Google Tag Manager can be found in Google's official FAQs.
4.3 + SSL Encryption
To protect the security of your data during transmission, we use encryption methods corresponding to the current state of technology, such as SSL encryption over HTTPS.
Changes to Our Privacy Policy
We reserve the right to adjust this privacy policy to ensure it always complies with current legal requirements or to implement changes to our services in the privacy policy, such as when introducing new services. The updated privacy policy will apply to your next visit.
4.4.1 Pandectes GDPR Compliance Cookie Consent Tool
Our website uses cookies to improve your user experience. With our Cookie Consent Tool, you can choose at any time which cookies you wish to allow and which ones you do not. You can adjust your settings at any time.
4.4.2 + Cookies and Right to Object to Direct Advertising
"Cookies" are small files stored on users' devices. Different types of information can be stored within cookies. The primary function of a cookie is to store user-related information (or the device on which the cookie is stored) during or after a visit to an online service.
Session Cookies (Transient Cookies): These are deleted after a user leaves a website and closes their browser. Example: shopping cart contents in an online store or login status.
Persistent Cookies: These remain stored even after the browser is closed. Example: a saved login status for returning users, or storing user interests for analytics or marketing purposes.
Third-Party Cookies: These come from providers other than the operator of the website. In contrast, First-Party Cookies are those set directly by the website owner.
We use both temporary and permanent cookies, and we provide full transparency about this in our privacy policy.
Cookie Preferences & Opt-out Options
If users do not wish to have cookies stored on their computer, they are encouraged to disable the corresponding option in their browser settings. Stored cookies can be deleted in the system settings of the browser. However, disabling cookies may limit the functionality of this online service.
A general opt-out for cookies used in online marketing and tracking can be declared via:
U.S. opt-out page: http://www.aboutads.info/choices/ EU opt-out page: http://www.youronlinechoices.com/ Alternatively, cookies can be disabled directly in the browser settings. Please note that some website functions may no longer work after disabling cookies.
Browser-specific guides for managing cookies:
Mozilla Firefox: Delete & manage cookies Internet Explorer: Manage cookies Google Chrome: Clear cookies Opera: Opera help page Safari: Manage cookies in Safari Opt-out for Tracking & Ads
If you do not want your data to be processed for analytics or advertising purposes, you can deactivate it here:
Disable Google Analytics: Google Opt-out Disable Facebook Ads: Facebook Ad Preferences Disable Personalized Ads: Your Online Choices For more details, refer to our Cookie Policy: https://sensoryboost.de/pages/cookie-erklarung
4.5 Facebook (META) Services
4.5.1 + Facebook Pixel
We use Facebook Pixel as part of the following technologies provided by Facebook Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland ("Facebook"). The Facebook Pixel automatically collects and stores data (IP address, visit timestamp, device and browser information, and data on how you interact with our website based on predefined events such as website visits or newsletter sign-ups).
When you visit our website, a cookie is automatically set by Facebook Pixel, enabling pseudonymous tracking of your browser across different websites. Facebook may combine this information with other data from your Facebook account and use it to generate reports on website activity and provide personalized and group-based advertising.
4.5.1 + Facebook Pixel
The information automatically collected via Facebook technologies about your use of our website is usually transferred to a server of Facebook, Inc., 1601 Willow Road, Menlo Park, California 94025, USA, where it is stored. There is no adequacy decision by the European Commission for the USA. If data transfer to the USA falls under our responsibility, we rely on Standard Contractual Clauses (SCCs) issued by the European Commission for our cooperation. Further information on Facebook's data processing can be found in Facebook's privacy policy.
4.5.2 + Facebook Analytics
As part of Facebook Analytics, statistics about visitor activities on our website are created using data collected via the Facebook Pixel. Data processing is based on an agreement for commissioned processing by Facebook. The analysis helps us optimize the presentation and marketing of our website.
4.5.3 + Facebook Ads
We use Facebook Ads to promote this website on Facebook and other platforms. While we define the parameters of advertising campaigns, Facebook is responsible for the placement of ads for individual users. Unless otherwise stated for specific technologies, data processing is based on a joint controller agreement under Article 26 GDPR. This joint responsibility is limited to data collection and transmission to Facebook Ireland. Subsequent data processing by Facebook Ireland is not included in this agreement.
Based on Facebook Pixel analytics of visitor activities on our website, we conduct Facebook Custom Audience targeted advertising, determining specific characteristics of our target groups.
Using pseudonymous Cookie-IDs and behavioral data collected via Facebook Pixel, we implement Facebook Pixel Remarketing for personalized ads.
With Facebook Pixel Conversions, we track your post-click behavior when you land on our website via a Facebook Ads campaign. This data processing is based on an agreement for commissioned processing by Facebook.
4.6 WhatsApp Business
We offer our customers the option to contact us via WhatsApp Business, a service provided by WhatsApp Inc. This service is intended solely as an additional communication channel to facilitate contacting us. We do not initiate contact via WhatsApp Business unless you send us a message first, thereby giving your consent to communicate through this channel.
Please note that WhatsApp Business is part of Facebook, Inc., and data may be stored on servers outside the EU, particularly in the USA. We have no control over how WhatsApp processes data exchanged through this service. The privacy practices of WhatsApp are detailed in their privacy policy, which we recommend reading.
Using WhatsApp Business for communication with us is voluntary and based on your consent under Art. 6 (1) lit. a GDPR.
4.7 Use of the UpPromote Affiliate Program
At SensoryBoost, we use the Shopify app "UpPromote" to manage our affiliate program, allowing affiliate partners to promote our products and services across various online channels, such as websites or social media platforms.
Collection and Processing of Personal Data:
The entity responsible for processing your personal data within this affiliate program is:
SensoryBoost
Albert-Einstein-Str. 4
04600 Altenburg, Germany
Data processing is carried out in accordance with applicable data protection laws, particularly the General Data Protection Regulation (GDPR).
4.7.1 Data Processing by SensoryBoost
If you participate as an affiliate partner in our program, we collect certain personal data, including:
✔ Contact information: Email address, and if applicable, first and last name.
✔ Payment information: Bank details or preferred payment method details.
✔ Marketing information: Data related to your social media profiles or websites where you place our affiliate links.
This data is necessary to:
✔ Enable your participation in the affiliate program.
✔ Ensure the correct payment of commissions.
✔ Contact you for support or program-related inquiries.
The processing of this data is in compliance with applicable data protection laws, particularly the GDPR.
1.2 Data Processing by UpPromote
If you access our website via an affiliate link and complete a transaction, the UpPromote system collects certain information about your order, such as the order amount, the items ordered, and the order ID. This data is used to ensure the traceability of affiliate transactions and to accurately process commission payments to the respective affiliate partners.
UpPromote sets a cookie on your device that does not store any personal data. The storage and evaluation of this data are based on Art. 6(1)(f) GDPR, justified by our legitimate interest in the correct calculation of affiliate commissions. If consent is required for storing cookies or accessing information on your device, processing will only take place based on Art. 6(1)(a) GDPR. This consent can be revoked at any time with effect for the future.
For more information on data protection at UpPromote, please visit https://docs.uppromote.com/privacy-policy/privacy-policy
2. Disclosure of Information
Disclosure of Data to Third Parties
We only transfer personal data to third parties if this is necessary for contract fulfillment or if you have given your consent. Data is disclosed to:
- Payment service providers: (e.g., PayPal, Klarna, Google Pay, Apple Pay) for payment processing.
Shipping service providers: (e.g., DHL, Deutsche Post, UPS) for delivering your orders.
Hosting providers & IT service providers: for operating the website.
Accounting and tax consultants: to fulfill tax obligations.
Further data transfers will only take place if you have consented or if we are legally required to do so.
Important: We do not sell or rent personal data to third parties.
3. Your Rights as a Data Subject
You have the right to access, correct, delete, restrict processing, and transfer your personal data. If you wish to exercise these rights, please contact us at [Your Email Address]. We reserve the right to request proof of identity to process your request.
Affiliate partners should contact us directly to exercise their rights, as we act as the data controller under the GDPR in this context.
4. Changes to the Privacy Policy
We reserve the right to update this privacy policy to reflect changes in our data protection practices or legal requirements. In the event of significant changes, we will inform you about the updated privacy policy. By continuing to use the affiliate program, you agree to the revised privacy policy.
5. Contact Information
If you have any questions about this privacy policy or the processing of your personal data, you can contact us at Support@SensoryBoost.de.
5. Social Media
5.1 Plugins from Facebook, Instagram, Pinterest, and LinkedIn
Our website uses social buttons from social networks. These are embedded as simple HTML links, meaning that no connection to the respective provider’s servers is established when you visit our website. If you click on one of the buttons, the website of the respective social network will open in a new browser window, where you can, for example, use the Like or Share button.
5.2 Our Online Presence on Facebook, Instagram, YouTube
If you have given your consent to the respective social media operator pursuant to Art. 6(1)(a) GDPR, your data will be automatically collected and stored for market research and advertising purposes when you visit our online presence on the aforementioned social media platforms. Pseudonymized usage profiles may be created from this data, which can be used, for example, to display advertisements inside and outside the platforms that are presumably tailored to your interests. Cookies are typically used for this purpose.
For detailed information on data processing and usage by the respective social media operators, as well as contact options and your rights and settings to protect your privacy, please refer to the privacy policies linked below. If you need further assistance, you can contact us.
Facebook
Facebook is a service provided by Facebook Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland ("Facebook Ireland"). The information automatically collected by Facebook Ireland about your use of our online presence on Facebook is typically transferred to a server of Facebook, Inc., 1601 Willow Road, Menlo Park, California 94025, USA, and stored there. There is no adequacy decision by the European Commission for the USA. Our cooperation is based on the European Commission’s standard contractual clauses. Data processing in the context of visiting a Facebook Fanpage is carried out based on a joint controllership agreement pursuant to Art. 26 GDPR. Further information (including details on Insights data) can be found here.
Instagram
Instagram is a service provided by Facebook Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland ("Facebook Ireland"). The information automatically collected by Facebook Ireland about your use of our online presence on Instagram is typically transferred to a server of Facebook, Inc., 1601 Willow Road, Menlo Park, California 94025, USA, and stored there. There is no adequacy decision by the European Commission for the USA. Our cooperation is based on the European Commission’s standard contractual clauses. Data processing in the context of visiting an Instagram Fanpage is carried out based on a joint controllership agreement pursuant to Art. 26 GDPR. Further information (including details on Insights data) can be found here.
YouTube
YouTube is a service provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). The information automatically collected by Google about your use of our online presence on YouTube is typically transferred to a server of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and stored there. There is no adequacy decision by the European Commission for the USA. Our cooperation is based on the European Commission’s standard contractual clauses.
Pinterest
Pinterest is a service provided by Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland ("Pinterest"). The information automatically collected by Pinterest about your use of our online presence on Pinterest is typically transferred to a server of Pinterest, Inc., 505 Brannan St., San Francisco, CA 94107, USA, and stored there. There is no adequacy decision by the European Commission for the USA. Our cooperation is based on the European Commission’s standard contractual clauses.
LinkedIn
LinkedIn is a service provided by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland ("LinkedIn"). The information automatically collected by LinkedIn about your use of our online presence on LinkedIn is typically transferred to a server of LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA, and stored there. There is no adequacy decision by the European Commission for the USA. Our cooperation is based on the European Commission’s standard contractual clauses.
Xing
Xing is a service provided by New Work SE, Dammtorstraße 30, 20354 Hamburg.
6. Contact Options and Your Rights
6.1 Rights of Data Subjects
Right to Object Pursuant to Art. 21 GDPR
You have the right to object to the processing of your personal data at any time if it is based on Art. 6(1)(e) or (f) GDPR.
If you wish to object to the processing of your data for advertising purposes, please send us an email at Support@SensoryBoost.de or use the cookie settings to disable personalized advertising.
- You have the right to request confirmation as to whether your data is being processed and to obtain access to this data, as well as further information and a copy of the data pursuant to Art. 15 GDPR.
Pursuant to Art. 16 GDPR, you have the right to request the completion or correction of your inaccurate personal data.
In accordance with Art. 17 GDPR, you have the right to request the immediate deletion of your data or, alternatively, to request a restriction of processing pursuant to Art. 18 GDPR.
You have the right to receive the data you provided to us in accordance with Art. 20 GDPR and to request its transfer to another controller.
Furthermore, pursuant to Art. 77 GDPR, you have the right to lodge a complaint with the competent supervisory authority.
6.2 + Contact
If you have any questions about the collection, processing or use of your personal data, as well as revocation of any consent given or objection to a specific use of data, please contact our company data protection officer.
Benjamin Zeising | SensoryBoost – Info@SensoryBoost.de – Subject: Data protection
02/24/2025
This privacy policy informs you about the nature, scope, and purpose of the processing of personal data (hereinafter referred to as "data") within our online offering and the associated websites, features, and content, as well as external online presences, such as our social media profiles (collectively referred to as the "online offering"). Regarding the terminology used, such as "processing" or "controller," we refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR).
Controller
SensoryBoost
Albert-Einstein-Straße 4
04600 Altenburg, Germany
📧 Business@SensoryBoost.de
👤 Managing Director/Owner: Benjamin Zeising
🔗 Link to the imprint: https://sensoryboost.de/policies/legal-notice
Types of Processed Data:
– Inventory data (e.g., names, addresses).
– Contact data (e.g., email, phone numbers).
– Content data (e.g., text input, photographs, videos).
– Usage data (e.g., visited websites, interest in content, access times).
– Meta/communication data (e.g., device information, IP addresses).
Categories of Data Subjects
Visitors and users of the online offering (hereinafter collectively referred to as "users").
Purpose of Processing
– Provision of the online offering, its features, and content.
– Responding to inquiries and communication with users.
– Security measures.
– Reach measurement/marketing.
Definitions of Key Terms
Personal Data:
All information relating to an identified or identifiable natural person (hereinafter referred to as "data subject"); a natural person is considered identifiable if they can be identified directly or indirectly, particularly through an identifier such as a name, identification number, location data, an online identifier (e.g., cookie), or one or more specific characteristics that express the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
Processing:
Any operation performed on personal data, whether or not by automated means. This includes collection, recording, organization, storage, adaptation, retrieval, consultation, use, disclosure, dissemination, alignment, restriction, erasure, or destruction.
Pseudonymization:
Processing personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data is not assigned to an identified or identifiable natural person.
Profiling:
Any automated processing of personal data used to evaluate certain personal aspects relating to a natural person, particularly to analyze or predict aspects concerning job performance, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.
Controller:
The natural or legal person, public authority, agency, or other body that determines the purposes and means of processing personal data, either alone or jointly with others.
Processor:
A natural or legal person, public authority, agency, or other body that processes personal data on behalf of the controller.
Relevant Legal Bases
In accordance with Article 13 of the GDPR, we inform you of the legal bases for our data processing. Unless otherwise stated in this privacy policy, the following applies: The legal basis for obtaining consent is Article 6(1)(a) and Article 7 GDPR. The legal basis for processing to fulfill our services, perform contractual measures, and respond to inquiries is Article 6(1)(b) GDPR. The legal basis for processing to fulfill our legal obligations is Article 6(1)(c) GDPR, and the legal basis for processing to protect our legitimate interests is Article 6(1)(f) GDPR. If the processing of personal data is required to protect the vital interests of the data subject or another natural person, Article 6(1)(d) GDPR serves as the legal basis.
Storage Duration and Deletion of Data
We store personal data only as long as necessary for the respective processing purposes or as required by law. The storage duration is determined by the following criteria:
✔ Order data: 10 years in accordance with § 147 AO (Tax Law).
✔ Contact inquiries: 1 year after processing.
✔ Marketing & tracking data: 6 months (if no further use occurs).
✔ Customer account data: Until deleted by the user or after 3 years of inactivity.
✔ Accounting and tax data: 10 years in accordance with § 257 HGB and § 147 AO.
✔ Data from cookies & tracking technologies: Depending on the type of cookie, between 1 day and a maximum of 2 years.
After expiration of the respective periods, the data is deleted or anonymized in accordance with legal requirements.
Security Measures
In accordance with Article 32 GDPR, we implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, taking into account the state of technology, implementation costs, and the nature, scope, circumstances, and purposes of processing, as well as the varying likelihood and severity of risks to individuals’ rights and freedoms.
Our security measures include:
✔ Ensuring the confidentiality, integrity, and availability of data by controlling physical access to the data, as well as access rights, data input, transfer, ensuring availability, and data separation.
✔ Procedures that allow the exercise of data subject rights, deletion of data, and response to threats to data security.
✔ Consideration of data protection principles in the selection and development of hardware, software, and processes, in accordance with the principles of "privacy by design" and "privacy by default" (Article 25 GDPR).
Collaboration with Processors and Third Parties
If we disclose, transmit, or otherwise provide access to data to other individuals and companies (processors or third parties) within the scope of our processing, this is done only based on a legal permission (e.g., if data transfer to third parties, such as payment service providers, is required for contract fulfillment pursuant to Article 6(1)(b) GDPR), if you have consented, if a legal obligation requires it, or based on our legitimate interests (e.g., using service providers, web hosts, etc.).
If we commission third parties with the processing of data on the basis of a so-called "data processing agreement," this is done based on Article 28 GDPR.
Data Transfers to Third Countries
We transfer personal data to entities in third countries (outside the European Union or the European Economic Area) only under the following conditions:
Adequacy Decision by the EU Commission: If the EU Commission has determined that a third country ensures an adequate level of data protection, data transfers are based on this decision (e.g., for Canada or Japan).
For data transfers to the USA and other third countries without an adequacy decision, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission. Where possible, we implement additional security measures such as encryption and pseudonymization to ensure data protection.
Additional Safeguards: If necessary, we implement further measures (e.g., encryption, pseudonymization) to enhance data security.
Explicit User Consent under Article 49(1)(a) GDPR: In exceptional cases, data is transferred only with your explicit consent (e.g., when using a service that is not otherwise secured).
USA & Third Countries
Since U.S. companies such as Google or Meta are not automatically subject to GDPR, it cannot be ruled out that U.S. authorities may access the data despite SCCs.
If you do not agree with this, you can disable tracking and external services in the cookie settings.
------------------------------------------------------------------------------------------------------------------------------
1. Access Data and Hosting
You can visit our website without providing any personal information. Each time you access a webpage, the web server automatically stores a so-called server log file containing, for example, the name of the requested file, your IP address, date and time of access, amount of data transferred, and the requesting provider (access data) to document the request.
These access data are evaluated exclusively for the purpose of ensuring the trouble-free operation of the website and improving our services. This serves our overriding legitimate interest in a correct presentation of our website in accordance with Article 6(1)(f) GDPR.
All access data will be deleted no later than seven days after your visit ends.
Hosting by Shopify
We use the shop system of the service provider Shopify International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland ("Shopify"), for the purpose of hosting and displaying the online shop based on processing on our behalf. All data collected on our website is processed on Shopify's servers. As part of the aforementioned Shopify services, data may also be transmitted for further processing to Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4, Canada, Shopify Data Processing (USA) Inc., Shopify Payments, or Shopify (USA) Inc. In the event that data is transferred to Shopify Inc. in Canada, an adequacy decision by the European Commission ensures an adequate level of data protection.
For further information on Shopify's data protection, please visit: https://www.shopify.com/legal/privacy. Further processing on servers other than those mentioned above only takes place within the scope set out below.
1.1 + Hosting
The services for hosting and displaying the website are partially provided by our service providers as part of processing on our behalf. Unless otherwise specified in this privacy policy, all access data and all data entered into forms on this website are processed on their servers. If you have questions about our service providers and the basis of our cooperation with them, please contact us via the contact information provided in this privacy policy.
Our service providers are located in and/or use servers in the following countries, where the European Commission has determined an adequate level of data protection: Canada.
Our service providers are also located in and/or use servers in the USA and other countries outside the EU and EEA. No adequacy decision by the European Commission exists for these countries. Our cooperation with these service providers is based on the European Commission’s Standard Contractual Clauses.
1.2 + Content Delivery Network (CDN) - Cloudflare
To reduce loading times, we use a Content Delivery Network ("CDN") for some of our services. This service delivers content, such as large media files, through regionally distributed servers of external CDN providers. As a result, access data is processed on the service providers’ servers. Our service providers act as processors on our behalf.
Our service providers are located in and/or use servers in countries outside the EU and EEA. No adequacy decision by the European Commission exists for these countries. Our cooperation with these service providers is based on the European Commission’s Standard Contractual Clauses.
If you have any questions about our service providers and the basis of our cooperation with them, please contact us using the contact information provided in this privacy policy.
2. Data Processing for Contract Execution and Contact
2.1 + Data Processing for Contract Execution
For the purpose of contract execution in accordance with Art. 6 (1) sentence 1 lit. b GDPR, we collect personal data when you voluntarily provide it to us as part of your order. Required fields are marked as such because we need this data to process the contract, and without it, we cannot complete your order. The specific data collected can be found in the respective input forms.
Further details on how we process your data, particularly regarding the transfer of data to our service providers for order processing, payment, and shipping, can be found in the following sections of this privacy policy. Once the contract has been fully executed, your data will be restricted for further processing and deleted after the retention periods required by tax and commercial law in accordance with Art. 6 (1) sentence 1 lit. c GDPR, unless you have expressly consented to further use of your data under Art. 6 (1) sentence 1 lit. a GDPR, or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this privacy policy.
2.2 + User Account
If you have given your consent in accordance with Art. 6 (1) sentence 1 lit. a GDPR by deciding to open a customer account, we will use your data for the purpose of account creation and storage of your data for future orders on our website.
You can delete your customer account at any time by sending a message to the contact address mentioned in this privacy policy or via a designated function in your account settings. After deletion of your customer account, your data will be erased unless you have explicitly consented to further use of your data under Art. 6 (1) sentence 1 lit. a GDPR, or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this privacy policy.
2.3 + Contact
As part of customer communication, we collect personal data to process your inquiries in accordance with Art. 6 (1) sentence 1 lit. b GDPR when you voluntarily provide this information to us (e.g., via contact form or email). Required fields are marked as such because, in these cases, we need the data to process your inquiry.
The specific data collected can be found in the respective input forms. Once your inquiry has been fully processed, your data will be deleted unless you have explicitly consented to further use of your data under Art. 6 (1) sentence 1 lit. a GDPR, or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this privacy policy.
2.3.1 Shopify Inbox
This website uses the live chat system of the following provider: Shopify International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland.
The processing of personal data transmitted via chat is carried out either in accordance with Art. 6 (1) lit. b GDPR, as it is necessary for contract initiation or execution, or in accordance with Art. 6 (1) lit. f GDPR due to our legitimate interest in providing effective customer support to our website visitors.
The data you transmit via chat will be deleted once the respective issue has been resolved, unless legal retention periods require otherwise.
Additionally, for the purpose of creating pseudonymized usage profiles, further information may be collected and analyzed using cookies. However, this data does not serve to personally identify you and will not be merged with other data sets. If this information is considered personal data, processing is carried out in accordance with Art. 6 (1) lit. f GDPR based on our legitimate interest in statistical analysis of user behavior for optimization purposes.
You can prevent the use of cookies by adjusting your browser settings. However, this may limit the functionality of our website.
You can object to the collection and storage of data for the purpose of creating a pseudonymized usage profile at any time with future effect.
Data is also transferred to: Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4, Canada.
We have concluded a data processing agreement with the provider to ensure the protection of our website visitors’ data and to prohibit unauthorized disclosure to third parties.
For data transfers to Canada, an adequate level of data protection is ensured by an adequacy decision of the European Commission.
2.4 + Shipping Processing / Shipping Notification
If you have given us your explicit consent during or after your order, we will share your email address and phone number with the selected shipping provider in accordance with Art. 6 (1) sentence 1 lit. a GDPR so that they can contact you prior to delivery for the purpose of shipment notification or coordination.
You can revoke your consent at any time by sending a message to the contact address specified in this privacy policy or directly to the shipping provider at the following address. After revocation, we will delete your data unless you have explicitly consented to further use or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this policy.
DHL Paket GmbH
Sträßchensweg 10
53113 Bonn, Germany
3. Data Processing for Payment and Transaction Processing
To process payments in our online store, we work with the following partners: technical service providers, financial institutions, and payment service providers.
3.1 + Data Processing for Transaction Execution
Depending on the selected payment method, we transmit the necessary data for processing the payment transaction to our technical service providers, who act as data processors on our behalf, or to the commissioned financial institutions or the selected payment service provider, as far as this is required for processing the payment. This serves to fulfill the contract in accordance with Art. 6 (1) sentence 1 lit. b GDPR. In some cases, payment service providers collect the necessary data for processing payments themselves, e.g., on their own websites or through a technical integration in the checkout process. The privacy policy of the respective payment service provider applies in these cases.
For any questions regarding our payment processing partners and the basis of our collaboration with them, please refer to the contact details provided in this privacy policy.
3.2 + Data Processing for Fraud Prevention and Optimization of Our Payment Processes
In certain cases, we may provide our service providers with additional data that they use, along with the data necessary for processing payments, as our data processors for fraud prevention and optimizing our payment processes (e.g., invoicing, handling of disputed payments, accounting support). This serves our legitimate interests in fraud prevention and efficient payment management in accordance with Art. 6 (1) sentence 1 lit. f GDPR.
3.3 + Identity and Credit Check with Klarna
Klarna (Direct Debit)
If you choose the payment services of Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden (hereinafter referred to as "Klarna"), we ask for your consent in accordance with Art. 6 (1) sentence 1 lit. a GDPR to transmit the necessary data for payment processing and an identity and credit check to Klarna. In Germany, Klarna may use credit agencies listed in Klarna’s privacy policy for identity and credit checks. The obtained information about the statistical probability of a payment default is used by Klarna to make a balanced decision regarding the initiation, execution, or termination of the contractual relationship.
You can revoke your consent at any time by sending a message to the contact details provided in this privacy policy. This may result in certain payment options no longer being available to you. You can also withdraw your consent for Klarna’s use of your personal data directly with Klarna.
3.4 Payment Service Amazon Pay
When paying via Amazon Pay, we transmit your payment data primarily to Amazon Payments Europe s.c.a. and secondarily to Amazon EU SARL, Amazon Services Europe SARL, and Amazon Media EU SARL, all based at 5, Rue Plaetis L 2338 Luxembourg (hereinafter referred to as "Amazon Payments").
Amazon Payments reserves the right to conduct a credit check. The result of the credit check regarding the statistical probability of a payment default is used by Amazon Payments to determine the provision of the respective payment method. The credit check may include probability values (so-called score values). If score values are included in the result of the credit check, these are based on a scientifically recognized mathematical-statistical method. The calculation of score values includes address data, among other factors.
Furthermore, Amazon Payments is entitled to transmit your data to unnamed third parties (such as banks, e-service providers, service partners, auditors, analytics providers, credit agencies, marketing partners, cloud service providers, retargeting providers, and affiliated companies).
For further privacy-related information, including the credit agencies used, please refer to Amazon Payments’ privacy policy: pay.amazon.com/de/help/201751600. The legal basis for this processing is Art. 6 (1) sentence 1 lit. b GDPR.
3.5 Payment Service PayPal
As part of the payment processing, when paying via PayPal, credit card via PayPal, direct debit via PayPal, or – if offered – "purchase on account" via PayPal, we transmit your payment data to PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter referred to as "PayPal"). PayPal reserves the right to conduct a credit check for the payment methods credit card via PayPal, direct debit via PayPal, or – if offered – "purchase on account" via PayPal. More information is available at: www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=de_DE#rAnnex.
The result of the credit check concerning the statistical probability of a payment default is used by PayPal to decide on the provision of the respective payment method. The credit report may contain probability values (so-called score values). If score values are incorporated into the result, they are based on a scientifically recognized mathematical-statistical process. The calculation of score values includes address data, among other factors.
Furthermore, PayPal is entitled to transmit your data to known third parties (such as banks, e-service providers, service partners, auditors, analytics providers, credit agencies, marketing partners, cloud service providers, retargeting providers, and affiliated companies) as well as unnamed third parties (www.paypal.com/de/webapps/mpp/ua/third-parties-list).
For further privacy-related information, including the credit agencies used, please refer to PayPal’s privacy policy: www.paypal.com/de/webapps/mpp/ua/privacy-full. The legal basis for this processing is Art. 6 (1) sentence 1 lit. b GDPR.
3.6 Shopify Payments (Apple Pay, Google Pay, etc.)
We use the payment service provider "Shopify Payments", 3rd Floor, Europa House, Harcourt Building, Harcourt Street, Dublin 2. If you choose a payment method provided by Shopify Payments, the payment is processed via the technical service provider Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland. We transmit the information you provided during the order process, including order details (name, address, account number, bank code, possibly credit card number, invoice amount, currency, and transaction number), to Stripe Payments Europe Ltd. in accordance with Art. 6 (1) lit. b GDPR. The transfer of your data is solely for the purpose of payment processing with Stripe Payments Europe Ltd. and only as far as necessary for this.
More information about Shopify Payments’ privacy policies can be found at: https://www.shopify.com/legal/privacy.
For privacy information about Stripe Payments Europe Ltd., please visit: https://stripe.com/de/privacy.
4. Integration of Third-Party Services and Content
Within our online offering, we use third-party content or service offers based on our legitimate interest (i.e., interest in the analysis, optimization, and economic operation of our online offering as defined by Art. 6 (1) lit. f GDPR) to integrate content and services, such as videos or fonts (hereinafter collectively referred to as “content”).
This always requires that the third-party providers of this content recognize the user’s IP address, as they cannot send the content to the user’s browser without it. The IP address is therefore required to display this content. We make an effort to use only content whose respective providers use the IP address solely to deliver the content. Third-party providers may also use so-called pixel tags (invisible graphics, also referred to as "web beacons") for statistical or marketing purposes. These "pixel tags" can be used to analyze visitor traffic on the pages of this website. The pseudonymized information may also be stored in cookies on the user’s device and may include technical information about the browser and operating system, referring web pages, visit time, and other details regarding the use of our online offering, as well as being linked with such information from other sources.
4.0 Judge.me Review Platform
To continuously improve the quality of our offering and enable our customers to make transparent purchasing decisions, we use the review platform Judge.me. This platform allows our customers to share their experiences with our products. The submitted reviews help us and other customers to better assess the quality and satisfaction of our products.
When using Judge.me, personal data such as your name and email address may be collected to ensure the authenticity of reviews. This data processing serves our legitimate interest in collecting feedback on our products and improving our services. Further details on data collection and usage by Judge.me can be found in the platform’s privacy policy.
4.1 YouTube
We embed videos from the platform YouTube, provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
📜 Privacy Policy: https://www.google.com/policies/privacy/
🚫 Opt-Out: https://adssettings.google.com/authenticated
4.2 GOOGLE
We integrate fonts (Google Fonts) provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
📜 Privacy Policy: https://www.google.com/policies/privacy/
🚫 Opt-Out: https://adssettings.google.com/authenticated
4.2.1 Google ReCaptcha
We integrate the bot detection function (ReCaptcha) provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, for security purposes, such as form submissions.
📜 Privacy Policy: https://www.google.com/policies/privacy/
🚫 Opt-Out: https://adssettings.google.com/authenticated
4.2.2 Google Fonts
We integrate fonts (Google Fonts) provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
📜 Privacy Policy: https://www.google.com/policies/privacy/
🚫 Opt-Out: https://adssettings.google.com/authenticated
4.2.3 Google Maps
To visually display geographical information, Google Maps collects data about your usage of the Maps functions, particularly your IP address and location data, which are transmitted to and processed by Google.
⚠ Note: We have no influence over this subsequent data processing by Google.
4.2.4 Google ADS
For advertising purposes in Google search results as well as on third-party websites, a Google Remarketing Cookie is set when you visit our website. This cookie automatically enables interest-based advertising by collecting and processing data (IP address, time of visit, device and browser information, as well as information on your website usage) and associating it with a pseudonymous cookie ID based on the pages you visit.
Further data processing only takes place if you have activated "personalized advertising" in your Google account settings. If you are logged into your Google account while visiting our website, Google may combine your data with Google Analytics data to create and define audience lists for cross-device remarketing.
For website analysis and event tracking, we use Google Ads Conversion Tracking to measure subsequent user behavior when you reach our website via a Google Ads advertisement. Cookies may be used to collect data (IP address, time of visit, device and browser information, as well as details on your website usage based on predefined events, such as visiting a page or signing up for a newsletter). Pseudonymous user profiles may be created from this data.
4.2.5 Google Analytics
We use Google Analytics, a web analytics service from Google LLC ("Google"), based on our legitimate interests (i.e., our interest in analyzing, optimizing, and operating our online offering economically, according to Art. 6 para. 1 lit. f GDPR). Google uses cookies to collect user data.
The information generated by the cookies about your use of this website is usually transmitted to a Google server in the USA and stored there.
Google is certified under the Privacy Shield Agreement, which guarantees compliance with European data protection laws: 📜 Privacy Shield Certification: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
Google processes this information on our behalf to evaluate the use of our website by users, to compile reports on activities within this website, and to provide other services related to the use of our website and the internet. Pseudonymous usage profiles can be created from the processed data.
We use Google Analytics with IP anonymization enabled. This means that Google shortens IP addresses within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before transmitting them. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there.
The IP address transmitted by the user's browser is not merged with other Google data. Users can prevent the storage of cookies by configuring their browser settings accordingly. Additionally, users can prevent the collection of data generated by cookies and related to their use of the website from being sent to Google and processed by Google by downloading and installing the following browser plugin: 🔗 Google Analytics Opt-Out Plugin: http://tools.google.com/dlpage/gaoptout?hl=de
Further information on data usage by Google, settings, and opt-out options
You can find more details about Google's data usage, configuration options, and opt-out choices in Google's Privacy Policy: 🔗 Google Privacy Policy: https://policies.google.com/technologies/ads 🔗 Google Ad Settings: https://adssettings.google.com/authenticated
User personal data is deleted or anonymized after 14 months.
Social Media Presence
We maintain online presences within social networks and platforms to communicate with customers, interested parties, and users who are active there and to inform them about our services. When accessing these networks and platforms, the terms and conditions and data processing policies of the respective operators apply.
Unless otherwise stated in this privacy policy, we process user data if they interact with us within social networks and platforms, for example, by posting content on our pages or sending us messages.
4.2.6 Google TAG MANAGER
In our privacy policy, we aim to provide you with detailed insights into the role of Google Tag Manager, why it is used on our website, and how it processes data.
About Google Tag Manager: This tool allows us to manage website tags through a central interface. Tags are small code snippets that help track user interactions on our website. These codes often come from Google services such as Google Ads or Google Analytics but can also originate from other providers. Their functions include: Collecting browser data Supplying marketing tools with information Integrating buttons Setting cookies Tracking users across different websites
Usage on our website: Efficient organization and management of our website are essential to us to offer the best possible experience to users. We use various tracking tools to gain insights into user preferences and areas for improvement. Google Tag Manager facilitates the integration and management of these tools, offering a user-friendly interface without requiring programming knowledge.
Data storage and management: It's important to note that Google Tag Manager itself does not set cookies or store data. It merely serves as an intermediary for the tags of different web analytics tools, which independently collect data. In the Tag Manager settings, we have agreed to allow Google to receive anonymized data on the usage of Google Tag Manager. However, this data does not include information collected by the tags themselves.
Server locations and data protection: Google stores data on globally distributed servers. For detailed information on server locations and data retention periods, please visit the relevant Google pages.
Your Privacy Options
Although Google Tag Manager itself does not collect data, the individual tracking tools we use provide options to manage or disable data collection. Details on how to do this can be found in our specific privacy texts for these tools.
Google complies with the EU-U.S. Privacy Shield Framework, ensuring the secure transfer of personal data. More information about Google Tag Manager can be found in Google's official FAQs.
4.3 + SSL Encryption
To protect the security of your data during transmission, we use encryption methods corresponding to the current state of technology, such as SSL encryption over HTTPS.
Changes to Our Privacy Policy
We reserve the right to adjust this privacy policy to ensure it always complies with current legal requirements or to implement changes to our services in the privacy policy, such as when introducing new services. The updated privacy policy will apply to your next visit.
4.4.1 Pandectes GDPR Compliance Cookie Consent Tool
Our website uses cookies to improve your user experience. With our Cookie Consent Tool, you can choose at any time which cookies you wish to allow and which ones you do not. You can adjust your settings at any time.
4.4.2 + Cookies and Right to Object to Direct Advertising
"Cookies" are small files stored on users' devices. Different types of information can be stored within cookies. The primary function of a cookie is to store user-related information (or the device on which the cookie is stored) during or after a visit to an online service.
Session Cookies (Transient Cookies): These are deleted after a user leaves a website and closes their browser. Example: shopping cart contents in an online store or login status.
Persistent Cookies: These remain stored even after the browser is closed. Example: a saved login status for returning users, or storing user interests for analytics or marketing purposes.
Third-Party Cookies: These come from providers other than the operator of the website. In contrast, First-Party Cookies are those set directly by the website owner.
We use both temporary and permanent cookies, and we provide full transparency about this in our privacy policy.
Cookie Preferences & Opt-out Options
If users do not wish to have cookies stored on their computer, they are encouraged to disable the corresponding option in their browser settings. Stored cookies can be deleted in the system settings of the browser. However, disabling cookies may limit the functionality of this online service.
A general opt-out for cookies used in online marketing and tracking can be declared via:
U.S. opt-out page: http://www.aboutads.info/choices/ EU opt-out page: http://www.youronlinechoices.com/ Alternatively, cookies can be disabled directly in the browser settings. Please note that some website functions may no longer work after disabling cookies.
Browser-specific guides for managing cookies:
Mozilla Firefox: Delete & manage cookies Internet Explorer: Manage cookies Google Chrome: Clear cookies Opera: Opera help page Safari: Manage cookies in Safari Opt-out for Tracking & Ads
If you do not want your data to be processed for analytics or advertising purposes, you can deactivate it here:
Disable Google Analytics: Google Opt-out Disable Facebook Ads: Facebook Ad Preferences Disable Personalized Ads: Your Online Choices For more details, refer to our Cookie Policy: https://sensoryboost.de/pages/cookie-erklarung
4.5 Facebook (META) Services
4.5.1 + Facebook Pixel
We use Facebook Pixel as part of the following technologies provided by Facebook Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland ("Facebook"). The Facebook Pixel automatically collects and stores data (IP address, visit timestamp, device and browser information, and data on how you interact with our website based on predefined events such as website visits or newsletter sign-ups).
When you visit our website, a cookie is automatically set by Facebook Pixel, enabling pseudonymous tracking of your browser across different websites. Facebook may combine this information with other data from your Facebook account and use it to generate reports on website activity and provide personalized and group-based advertising.
4.5.1 + Facebook Pixel
The information automatically collected via Facebook technologies about your use of our website is usually transferred to a server of Facebook, Inc., 1601 Willow Road, Menlo Park, California 94025, USA, where it is stored. There is no adequacy decision by the European Commission for the USA. If data transfer to the USA falls under our responsibility, we rely on Standard Contractual Clauses (SCCs) issued by the European Commission for our cooperation. Further information on Facebook's data processing can be found in Facebook's privacy policy.
4.5.2 + Facebook Analytics
As part of Facebook Analytics, statistics about visitor activities on our website are created using data collected via the Facebook Pixel. Data processing is based on an agreement for commissioned processing by Facebook. The analysis helps us optimize the presentation and marketing of our website.
4.5.3 + Facebook Ads
We use Facebook Ads to promote this website on Facebook and other platforms. While we define the parameters of advertising campaigns, Facebook is responsible for the placement of ads for individual users. Unless otherwise stated for specific technologies, data processing is based on a joint controller agreement under Article 26 GDPR. This joint responsibility is limited to data collection and transmission to Facebook Ireland. Subsequent data processing by Facebook Ireland is not included in this agreement.
Based on Facebook Pixel analytics of visitor activities on our website, we conduct Facebook Custom Audience targeted advertising, determining specific characteristics of our target groups.
Using pseudonymous Cookie-IDs and behavioral data collected via Facebook Pixel, we implement Facebook Pixel Remarketing for personalized ads.
With Facebook Pixel Conversions, we track your post-click behavior when you land on our website via a Facebook Ads campaign. This data processing is based on an agreement for commissioned processing by Facebook.
4.6 WhatsApp Business
We offer our customers the option to contact us via WhatsApp Business, a service provided by WhatsApp Inc. This service is intended solely as an additional communication channel to facilitate contacting us. We do not initiate contact via WhatsApp Business unless you send us a message first, thereby giving your consent to communicate through this channel.
Please note that WhatsApp Business is part of Facebook, Inc., and data may be stored on servers outside the EU, particularly in the USA. We have no control over how WhatsApp processes data exchanged through this service. The privacy practices of WhatsApp are detailed in their privacy policy, which we recommend reading.
Using WhatsApp Business for communication with us is voluntary and based on your consent under Art. 6 (1) lit. a GDPR.
4.7 Use of the UpPromote Affiliate Program
At SensoryBoost, we use the Shopify app "UpPromote" to manage our affiliate program, allowing affiliate partners to promote our products and services across various online channels, such as websites or social media platforms.
Collection and Processing of Personal Data:
The entity responsible for processing your personal data within this affiliate program is:
SensoryBoost
Albert-Einstein-Str. 4
04600 Altenburg, Germany
Data processing is carried out in accordance with applicable data protection laws, particularly the General Data Protection Regulation (GDPR).
4.7.1 Data Processing by SensoryBoost
If you participate as an affiliate partner in our program, we collect certain personal data, including:
✔ Contact information: Email address, and if applicable, first and last name.
✔ Payment information: Bank details or preferred payment method details.
✔ Marketing information: Data related to your social media profiles or websites where you place our affiliate links.
This data is necessary to:
✔ Enable your participation in the affiliate program.
✔ Ensure the correct payment of commissions.
✔ Contact you for support or program-related inquiries.
The processing of this data is in compliance with applicable data protection laws, particularly the GDPR.
1.2 Data Processing by UpPromote
If you access our website via an affiliate link and complete a transaction, the UpPromote system collects certain information about your order, such as the order amount, the items ordered, and the order ID. This data is used to ensure the traceability of affiliate transactions and to accurately process commission payments to the respective affiliate partners.
UpPromote sets a cookie on your device that does not store any personal data. The storage and evaluation of this data are based on Art. 6(1)(f) GDPR, justified by our legitimate interest in the correct calculation of affiliate commissions. If consent is required for storing cookies or accessing information on your device, processing will only take place based on Art. 6(1)(a) GDPR. This consent can be revoked at any time with effect for the future.
For more information on data protection at UpPromote, please visit https://docs.uppromote.com/privacy-policy/privacy-policy
2. Disclosure of Information
Disclosure of Data to Third Parties
We only transfer personal data to third parties if this is necessary for contract fulfillment or if you have given your consent. Data is disclosed to:
- Payment service providers: (e.g., PayPal, Klarna, Google Pay, Apple Pay) for payment processing.
Shipping service providers: (e.g., DHL, Deutsche Post, UPS) for delivering your orders.
Hosting providers & IT service providers: for operating the website.
Accounting and tax consultants: to fulfill tax obligations.
Further data transfers will only take place if you have consented or if we are legally required to do so.
Important: We do not sell or rent personal data to third parties.
3. Your Rights as a Data Subject
You have the right to access, correct, delete, restrict processing, and transfer your personal data. If you wish to exercise these rights, please contact us at [Your Email Address]. We reserve the right to request proof of identity to process your request.
Affiliate partners should contact us directly to exercise their rights, as we act as the data controller under the GDPR in this context.
4. Changes to the Privacy Policy
We reserve the right to update this privacy policy to reflect changes in our data protection practices or legal requirements. In the event of significant changes, we will inform you about the updated privacy policy. By continuing to use the affiliate program, you agree to the revised privacy policy.
5. Contact Information
If you have any questions about this privacy policy or the processing of your personal data, you can contact us at Support@SensoryBoost.de.
5. Social Media
5.1 Plugins from Facebook, Instagram, Pinterest, and LinkedIn
Our website uses social buttons from social networks. These are embedded as simple HTML links, meaning that no connection to the respective provider’s servers is established when you visit our website. If you click on one of the buttons, the website of the respective social network will open in a new browser window, where you can, for example, use the Like or Share button.
5.2 Our Online Presence on Facebook, Instagram, YouTube
If you have given your consent to the respective social media operator pursuant to Art. 6(1)(a) GDPR, your data will be automatically collected and stored for market research and advertising purposes when you visit our online presence on the aforementioned social media platforms. Pseudonymized usage profiles may be created from this data, which can be used, for example, to display advertisements inside and outside the platforms that are presumably tailored to your interests. Cookies are typically used for this purpose.
For detailed information on data processing and usage by the respective social media operators, as well as contact options and your rights and settings to protect your privacy, please refer to the privacy policies linked below. If you need further assistance, you can contact us.
Facebook is a service provided by Facebook Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland ("Facebook Ireland"). The information automatically collected by Facebook Ireland about your use of our online presence on Facebook is typically transferred to a server of Facebook, Inc., 1601 Willow Road, Menlo Park, California 94025, USA, and stored there. There is no adequacy decision by the European Commission for the USA. Our cooperation is based on the European Commission’s standard contractual clauses. Data processing in the context of visiting a Facebook Fanpage is carried out based on a joint controllership agreement pursuant to Art. 26 GDPR. Further information (including details on Insights data) can be found here.
Instagram is a service provided by Facebook Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland ("Facebook Ireland"). The information automatically collected by Facebook Ireland about your use of our online presence on Instagram is typically transferred to a server of Facebook, Inc., 1601 Willow Road, Menlo Park, California 94025, USA, and stored there. There is no adequacy decision by the European Commission for the USA. Our cooperation is based on the European Commission’s standard contractual clauses. Data processing in the context of visiting an Instagram Fanpage is carried out based on a joint controllership agreement pursuant to Art. 26 GDPR. Further information (including details on Insights data) can be found here.
YouTube
YouTube is a service provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). The information automatically collected by Google about your use of our online presence on YouTube is typically transferred to a server of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and stored there. There is no adequacy decision by the European Commission for the USA. Our cooperation is based on the European Commission’s standard contractual clauses.
Pinterest is a service provided by Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland ("Pinterest"). The information automatically collected by Pinterest about your use of our online presence on Pinterest is typically transferred to a server of Pinterest, Inc., 505 Brannan St., San Francisco, CA 94107, USA, and stored there. There is no adequacy decision by the European Commission for the USA. Our cooperation is based on the European Commission’s standard contractual clauses.
LinkedIn is a service provided by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland ("LinkedIn"). The information automatically collected by LinkedIn about your use of our online presence on LinkedIn is typically transferred to a server of LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA, and stored there. There is no adequacy decision by the European Commission for the USA. Our cooperation is based on the European Commission’s standard contractual clauses.
Xing is a service provided by New Work SE, Dammtorstraße 30, 20354 Hamburg.
6. Contact Options and Your Rights
6.1 Rights of Data Subjects
Right to Object Pursuant to Art. 21 GDPR
You have the right to object to the processing of your personal data at any time if it is based on Art. 6(1)(e) or (f) GDPR.
If you wish to object to the processing of your data for advertising purposes, please send us an email at Support@SensoryBoost.de or use the cookie settings to disable personalized advertising.
- You have the right to request confirmation as to whether your data is being processed and to obtain access to this data, as well as further information and a copy of the data pursuant to Art. 15 GDPR.
Pursuant to Art. 16 GDPR, you have the right to request the completion or correction of your inaccurate personal data.
In accordance with Art. 17 GDPR, you have the right to request the immediate deletion of your data or, alternatively, to request a restriction of processing pursuant to Art. 18 GDPR.
You have the right to receive the data you provided to us in accordance with Art. 20 GDPR and to request its transfer to another controller.
Furthermore, pursuant to Art. 77 GDPR, you have the right to lodge a complaint with the competent supervisory authority.
6.2 + Contact
If you have any questions about the collection, processing or use of your personal data, as well as revocation of any consent given or objection to a specific use of data, please contact our company data protection officer.
Benjamin Zeising | SensoryBoost – Info@SensoryBoost.de – Subject: Data protection
02/24/2025