Vieri GmbH, Witzlebenstr. 38 , 14057 Berlin (“Vieri”)
The protection of personal data is very important to us. Whether data is collected and for what purpose it is processed is explained in the following data protection declaration. We comply with all applicable legislation on the protection of personal data and data security. Our employees are also extensively trained and are committed to secrecy and compliance with all data protection regulations.
I. Name and contact details of the person responsible
The person responsible within the meaning of Art. 4 EU-DSGVO for the processing of personal data is:
II. What data is collected?
server log files
We collect data, so-called server log files, about every access to the server on which the https://vieri.com
website is located. This access data includes, for example, the name of the accessed website, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting party providers.
The legal basis for data processing is Article 6 (1) (f) EU GDPR.
We collect personal data from the user when setting up the user account. This includes the name, the e-mail address and the address and - on a voluntary basis - the telephone number. If you buy a ring, you will be asked about the ring size.
The legal basis for data processing is Article 6 (1) (a) EU GDPR.
We provide a contact form to enable you to contact us electronically. The data entered in the input mask will be transmitted to us and saved. This requires the specification of the e-mail address. Additional information is voluntary.
The legal basis for data processing is Article 6 Paragraph 1 Letter a), Article 6 Paragraph 1 Letter b) and Article 6 Paragraph 1 Letter f) of the EU GDPR.
If you contact us at the e-mail address provided on our website, I will process the personal data you have provided - e-mail address as well as additional contact information and your name - for the purpose of answering the request.
The legal basis for data processing is Article 6 Paragraph 1 Letter b) and Article 6 Paragraph 1 Letter f) EU GDPR.
We offer a regular newsletter, which requires you to provide your e-mail address in order to receive it. Before the newsletter is sent, you must expressly confirm in the so-called double opt-in procedure that you would like to receive our newsletter. You will then receive a confirmation and authorization email with a link. If you click on this link, you confirm that you would like to receive the newsletter. This registration is logged in order to be able to provide legal evidence of the registration process.
You can unsubscribe from the newsletter at any time. The corresponding link can be found in every newsletter sent. Alternatively, you can withdraw your consent by contacting us at firstname.lastname@example.org
The legal basis for data processing is Article 6 (1) (a) EU GDPR.
You can set your browser so that you are informed about the setting of cookies and decide individually whether to accept them or to exclude the acceptance of cookies for certain cases or in general, such as cookies from third-party providers. If cookies are not accepted, the functionality of our website may be restricted.
The legal basis for data processing is Article 6 (1) (f) EU GDPR.
III. For what purposes is the data used?
Personal data is only collected, stored and processed to the extent necessary for the provision of the service, the execution of the contract or the answering of the request.
We only process your personal data in strict compliance with data protection regulations. In particular, corresponding data will only be processed if there is a legal permit.
server log files
The data mentioned are processed by us in order to establish a connection to our website. The processing is necessary to ensure the security and stability of the system.
We only use the log data for statistical evaluations, for the purpose of business operations, the security of the service and the optimization of the offer.
We reserve the right to subsequently check the log data if there are specific indications that the service provided is being used illegally.
Creating a user account makes it possible to use the services we offer. Based on the data entered, we will send you an invoice for the items you have purchased.
The contact form allows you to easily contact us. The collection of your e-mail address is essential in order to be able to answer your request. If data is also processed, such as name, address or similar, processing serves to individualize the respective user and thus to be able to respond to their request in the best possible way and to prevent any misuse of the contact form.
The processing of your e-mail address is essential in order to be able to answer your request. If data is also processed, such as name, address or similar, processing serves to individualize the respective user and thus to be able to respond to their request in the best possible way.
The purpose of the newsletter is to inform you about our offers and current developments. The collection of the e-mail address serves to send you the newsletter.
IV. Will data be passed on to third parties and if so, which ones?
In principle, the data you transmit will not be made available to third parties. In individual cases, however, it may be necessary for the execution of the contract to pass on your personal data to companies that we have entrusted with the provision of individual services. For their part, the third parties are obliged to comply with the statutory provisions when handling and processing this data.
We pass on your payment data to the commissioned bank during payment processing.
When paying by credit card via PayPal or by direct debit via PayPal, we pass on your payment data to PayPal (Europe) S.à rl et Cie, SCA, 22-24 Boulevard Royal, L-2449 Luxembourg, as part of payment processing. You can find more information on data protection at PayPal (Europe) S.à.rl et Cie, SCA here
A transmission to authorities and state institutions entitled to receive information only takes place within the framework of the statutory information obligations and in the event of a binding court decision. In these cases, we can provide the information, e.g. to assert, exercise and defend legal claims, enforce existing contracts, in the context of allegations of fraud, security measures or generally applicable statutory provisions.
Personal data will not be passed on outside of the scope described here without express consent.
Under no circumstances will we sell or rent personal data to third parties.
V. How long is the data stored?
Your data will be stored for as long as is necessary to fulfill the above purposes. As soon as this is no longer the case, e.g. after the contract has been fully implemented, they will be deleted or blocked if this is required by commercial or tax law retention requirements. From the point in time at which statutory retention requirements no longer conflict, the data will be deleted unless you have expressly consented to further use.
Server log files are stored on the server for 30 days.
VI. Your rights as a data subject
As a person affected by the processing of personal data, you are entitled to the rights listed below. These rights result from the provisions of the General Data Protection Regulation and are reproduced here in a partly simplified form.
1. Right to information
According to Art. 15 EU GDPR, you have the right to request confirmation from us as to whether personal data relating to you is being processed. If this is the case, you have a right to information about this personal data and the information specified in Art. 15 Para. 1 Clause 2 EU-DSGVO. This includes in particular the purpose of the processing, the categories of the processed data, the recipients to whom data has been or will be disclosed, as far as possible the planned duration of storage or the criteria for the duration of storage.
2. Right to Rectification
Pursuant to Art. 16 EU GDPR, you have the right to demand that we correct any incorrect personal data concerning you without delay. Taking into account the purposes of the processing, you have the right to request the completion of incomplete personal data - also by means of a supplementary declaration.
3. Right to Erasure
According to Art. 17 EU-DSGVO you have the right to demand that personal data concerning you be deleted immediately. We are obliged to delete personal data immediately if one of the provisions of Art. 17 Para. 1 EU-DSGVO applies. These reasons include, for example, that the data is no longer necessary for the purposes for which it was collected or otherwise processed.
4. Right to restriction of processing
According to Art. 18 EU GDPR, you have the right to demand that we restrict processing if one of the conditions specified in Art. 18 EU GDPR is met. This includes, for example, that you contest the accuracy of the personal data. Then we may only process the data to a limited extent for as long as it takes to check the accuracy of the personal data.
5. Right to data portability
According to Art. 20 EU-DSGVO you have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format. You have the right to transmit this data to another person responsible, ie another body that processes data, without hindrance, provided that the original processing was based on consent or was necessary for the execution of a contract.
6. Right to Object
Pursuant to Article 21 EU GDPR, you have the right to object at any time to the processing of your personal data if this data is processed on the basis of Article 6 Paragraph 1 lit. e) or f) EU GDPR and There are reasons arising from your personal situation. You can object at any time to the processing of data for the purpose of operating direct advertising. Personal data will then no longer be processed for this purpose. The right to object can be exercised by means of an informal declaration. A written declaration or alternatively an e-mail to the above contact address is sufficient.
7. Right to revoke the declaration of consent
You have the right to revoke your consent to the processing at any time in accordance with Article 7 (3) EU-DSGVO. The lawfulness of the processing carried out on the basis of the consent until the revocation is not affected. The right of withdrawal can be exercised by means of an informal declaration. A written declaration or alternatively an e-mail to the above contact address is sufficient.
8. Automated individual decision-making including profiling
Pursuant to Art. 22 EU GDPR, you have the right not to be subject to a decision based solely on automated processing - including profiling - which has legal effect on you or significantly affects you in a similar way. Art. 22 Para. 1 EU-DSGVO provides for exceptions to this, whereby Art. 22 Para. 4 EU-DSGVO again contains partial exceptions.
9. Right to lodge a complaint with a supervisory authority
Pursuant to Art. 77 EU-DSGVO, you have the right to lodge a complaint with a supervisory authority, in particular in the member state of your place of residence, your place of work or the place of the alleged infringement, without prejudice to any other administrative or judicial remedy, if you believe that the processing of the personal data concerning you violates this regulation.
In the present case, the responsible supervisory authority is:
Berlin Commissioner for Data Protection and Freedom of Information
VII. Third Party Services
We use the following third-party services:
• Facebook Inc., 1601 Willow Road, Menlo Park, California 94025, USA ("Facebook")
• Instagram Inc., subsidiary of Facebook Inc., 181 South Park Street, San Francisco, CA 94107, USA (“Instagram”)
• MailChimp (The Rocket Science Group, LLC, 675 Ponce de Leon, Avenue NE, Atlanta, GA 30308, USA (“MailChimp”)
A third-party provider may be based in a third country, ie in a country in which the GDPR does not have direct legal effect. In this case, data will only be transmitted if you have given your consent, if there is an appropriate level of data protection or if there is another legal permission.
Google, Facebook/Instagram, Twitter, LinkedIn and MailChimp operate under the Privacy Shield Agreement (EU-US Privacy Shield), which means that the specifications of the Privacy Shield Agreement are the same as the data protection level of the European Union and that the data is processed accordingly be treated.
The purpose of data processing is usually user-specific advertising, ie individualized advertising can be placed that corresponds to the presumed interests of the user or results from his previous usage behavior. For this purpose, cookies are stored on the end devices of the users. These cookies can save usage behavior and thus map areas of interest.
We would like to make it clear that users should contact the respective third-party provider directly in the event of requests for information and/or the assertion of other data subject rights. They have insight and access rights to the user data stored and processed there and can provide information and/or take appropriate measures. If you contact us directly, we will try to support your request as best we can. However, since we have no insight and no access to the data stored by third-party providers, our options for action are limited.
1. Facebook, Instagram
We have integrated plugins from the social networks and services Facebook and Instagram on our website https://vieri.com/.
To ensure your greatest possible protection and to take the principle of data minimization into account, we use the 2-click method. Direct contact between the social network and you is only established when you actively click on the corresponding button. If the button of the social network is not clicked, no data will be recorded, activities will not be logged or a surfing profile will be created.
If the button is clicked, the respective service provider receives the information that you have accessed our website. This does not require a user account with the respective service, nor do you have to be logged in if you have a user account. If, on the other hand, you have a user account with the service provider and are logged in, this data is assigned directly to the account. This can be prevented by logging out of your user account for the relevant service before clicking the button.
We have no way of influencing whether, to what extent, for what purpose and for how long the service providers and social networks collect personal data.
Further information on the handling of user data can be found here:
Our email newsletter is sent via the service provider MailChimp. MailChimp offers statistical evaluation options for usage data, although the evaluation is always group-related and not individual. The usage data generated by MailChimp is generally not evaluated individually. As far as possible, a tracking offered by MailChimp will be turned off. However, if you call up a newsletter, for example, via the link provided in the e-mail to ensure that it is displayed correctly in a browser, the analysis tool Google Analytics will be used on the website that is then displayed. Only MailChimp has access to the data generated in this way. However, you can prevent tracking by Google Analytics by using certain browser plug-ins.
be viewed here
VIII. Technical and organizational measures
We take technical and organizational measures to ensure that the security and protection requirements of the EU GDPR are met and that personal data is protected against loss, destruction, manipulation or access by unauthorized persons. The measures are always adapted to the current state of the art.