Privacy policy

1) Introduction and contact details of the controller

1.1 We are delighted that you are visiting our website and thank you for your interest. The following explains how we handle your personal data when you use our website. Personal data means any data that can be used to personally identify you.

1.2 The controller responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is Kitchen by Nature® Proprietor: Michelangelo Kozon, Burgfrauenstraße 111A, 13465 Berlin, Germany, email: impressum@kitchen-by-nature.com. The controller responsible for the processing of personal data is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.

2) Data collection when visiting our website

2.1 When you use our website for informational purposes only, i.e. if you do not register or otherwise submit information to us, we collect only the data that your browser transmits to the page server (so-called “server log files”). When you access our website, we collect the following data, which is technically necessary for us to display the website to you:

Our visited website
Date and time of access
Amount of data sent in bytes
Source/referrer from which you reached the page
Browser used
Operating system used
IP address used (if applicable: in anonymized form)

Processing is carried out in accordance with Art. 6(1)(f) GDPR on the basis of our legitimate interest in improving the stability and functionality of our website. The data will not be passed on or otherwise used. However, we reserve the right to subsequently review the server log files if there are concrete indications of unlawful use.

2.2 For security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries to the controller), this website uses SSL or TLS encryption. You can recognize an encrypted connection by the string “https://” and the lock symbol in your browser’s address bar.

3) Hosting & Content Delivery Network

3.1 Shopify

For the hosting of our website and the display of its content, we use the system of the following provider: Shopify International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland (“Shopify”)

Data is also transmitted to: Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4, Canada

All data collected on our website is processed on the provider’s servers. We have concluded a data processing agreement with the provider that ensures the protection of our site visitors’ data and prohibits unauthorized disclosure to third parties.

In the event of data transfer to Canada, an appropriate level of data protection is guaranteed by an adequacy decision of the European Commission.

3.2 Cloudflare

We use a content delivery network of the following provider: Cloudflare Inc., 101 Townsend St. San Francisco, CA 94107, USA

This service enables us to deliver large media files such as graphics, page content or scripts more quickly via a network of regionally distributed servers. Processing is carried out to safeguard our legitimate interest in improving the stability and functionality of our website pursuant to Art. 6(1)(f) GDPR. We have concluded a data processing agreement with the provider, which ensures the protection of our site visitors’ data and prohibits unauthorized disclosure to third parties.

For data transfers to the USA, the provider has joined the EU-U.S. Data Privacy Framework, which, on the basis of an adequacy decision by the European Commission, ensures compliance with the European level of data protection.

3.3 imgix

We use a content delivery network from the following provider: Zebrafish Labs Inc., 423 Tehama St., San Francisco, CA 94103, USA

This service enables us to deliver large media files such as graphics, page content, or scripts more quickly via a network of regionally distributed servers. Processing is carried out to safeguard our legitimate interest in improving the stability and functionality of our website pursuant to Art. 6(1)(f) GDPR. We have concluded a data processing agreement with the provider, which ensures the protection of our site visitors’ data and prohibits unauthorized disclosure to third parties.

3.4 Shopify

We use a content delivery network from the following provider: Shopify International Limited, Victoria Buildings, 2nd floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland (“Shopify”)

Data may also be transferred to:

Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4, Canada
Cloudflare Inc., 101 Townsend St. San Francisco, CA 94107, USA

In the event of a data transfer to Canada, an adequate level of data protection is ensured by an adequacy decision of the European Commission.

For data transfers to the USA, the data recipient has joined the EU-U.S. Data Privacy Framework, which, on the basis of an adequacy decision by the European Commission, ensures compliance with the European level of data protection.

4) Cookies

To make visiting our website attractive and to enable the use of certain functions, we use cookies, i.e. small text files that are stored on your device. Some of these cookies are automatically deleted after closing the browser (so-called “session cookies”), while others remain on your device for a longer period and enable the saving of page settings (so-called “persistent cookies”). In the latter case, you can find the storage period in the overview of your web browser’s cookie settings.

If personal data are also processed by individual cookies used by us, such processing is carried out pursuant to Art. 6(1)(b) GDPR either for the performance of the contract, pursuant to Art. 6(1)(a) GDPR in the event that consent has been given, or pursuant to Art. 6(1)(f) GDPR to safeguard our legitimate interests in the best possible functionality of the website as well as a customer-friendly and effective Design of the site visit.

You can configure your browser so that you are informed about the setting of cookies and can decide on their acceptance individually or exclude the acceptance of cookies for certain cases or in general.

Please note that if cookies are not accepted, the functionality of our website may be restricted.

5) Contacting us

5.1 Judge.me

For review reminders, we use the services of the following provider: Judge.me Ltd., c/o Buckworths, 2nd Floor, 1-3 Worship Street, London, England, EC2A 2AB, United Kingdom

Based exclusively on your express consent pursuant to Art. 6(1)(a) GDPR, we transmit your email address and, if applicable, other customer data to the provider so that they can contact you by email with a review reminder.

You may revoke your consent at any time with future effect, either to us or to the provider.

We have concluded a data processing agreement with the provider, which ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

In the event of data transfer to the provider's location, an adequate level of data protection is guaranteed by an adequacy decision of the European Commission.

5.2 When contacting us (e.g., via contact form or email), personal data is processed solely for the purpose of handling and responding to your inquiry and only to the extent necessary for this purpose.

The legal basis for processing this data is our legitimate interest in responding to your inquiry pursuant to Art. 6(1)(f) GDPR. If your contact is aimed at concluding a contract, the additional legal basis for processing is Art. 6(1)(b) GDPR. Your data will be deleted when it can be inferred from the circumstances that the matter in question has been fully clarified and provided that there are no statutory retention obligations to the contrary.

6) Data processing when opening a customer account

In accordance with Art. 6(1)(b) GDPR, personal data continues to be collected and processed to the extent necessary if you provide it to us when opening a customer account. Which data is required for opening the account can be found in the input mask of the corresponding form on our website.

Your customer account can be deleted at any time and can be done by sending a message to the above-mentioned address of the controller. After deletion of your customer account, your data will be deleted, provided that all contracts concluded through it have been fully processed, no statutory retention periods prevent this, and we have no legitimate interest in further storage.

7) Use of customer data for direct marketing

7.1 Subscription to our email newsletter

If you subscribe to our email newsletter, we will regularly send you information about our offers. The only mandatory information required for sending the newsletter is your email address. Providing additional data is voluntary and is used so that we can address you personally. For newsletter distribution, we use the so-called double opt-in procedure, which ensures that you only receive newsletters once you have expressly confirmed your consent to receive them by activating a verification link sent to the email address provided.

By activating the confirmation link, you give us your consent to use your personal data in accordance with Art. 6(1)(a) GDPR. In doing so, we store your internet Service provider (ISP) registered IP address as well as the date and time of registration, so that possible misuse of your email address can be traced at a later date. The data we collect when you sign up for the newsletter are used strictly for the stated purpose.

You can unsubscribe from the newsletter at any time via the designated link in the newsletter or by sending a corresponding message to the controller named at the beginning. Once you have unsubscribed, your email address will be deleted immediately from our newsletter distribution list, unless you have expressly consented to further use of your data or we reserve the right to use your data beyond this, which is permitted by law and about which we inform you in this notice.

7.2 Sending the email newsletter to existing customers

If you have provided us with your email address when purchasing goods or services, we reserve the right to regularly send you offers by email for similar goods or services from our range to those you have already purchased. In accordance with Section 7(3) of the German Unfair Competition Act (UWG), we do not need to obtain your separate consent for this. In this respect, the data processing is carried out solely on the basis of our legitimate interest in personalised direct advertising pursuant to Art. 6(1)(f) GDPR. If you initially objected to the use of your email address for this purpose, we will not send you any emails.

You are entitled to object at any time, with effect for the future, to the use of your email address for the aforementioned advertising purpose by notifying the controller named at the beginning. For this, you will only incur transmission costs at the basic rates. Upon receipt of your objection, the use of your email address for advertising purposes will be stopped immediately.

7.3 Klaviyo

Our email newsletters and other advertising email communications are sent via this provider: Klaviyo, Inc., 125 Summer St., Ste 600, Boston, MA 02110, USA

On the basis of our legitimate interest in effective and user-friendly email marketing, we pass on your data provided during registration to this provider in accordance with Art. 6(1)(f) GDPR so that it can handle email dispatch on our behalf.

Subject to your express consent pursuant to Art. 6(1)(a) GDPR, the provider also carries out statistical performance analysis of email campaigns using web beacons or tracking pixels in the emails sent, which can measure open rates and specific interactions with the newsletter content. Device information (e.g. time of access, IP address, browser type and operating system) is also collected and evaluated, but not merged with other data sets.

You may revoke your consent to email tracking at any time with effect for the future.

We have concluded a data processing agreement with the provider, which protects our visitors’ data and prohibits disclosure to third parties.

For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which, on the basis of an adequacy decision by the European Commission, ensures compliance with the European level of data protection security.

7.4 Email stock availability notification

For temporarily unavailable items, you can sign up to receive email stock availability notifications. In this case, we will send you a one-time email message about the availability of the item you have selected. Required information for the The only information required to send this notification is your email address. Providing any additional data is voluntary and may be used to address you personally. For email delivery, we use the so-called double opt-in procedure, which ensures that you will only receive a notification once you have expressly confirmed your consent by activating a verification link sent to the email address provided.

By activating the confirmation link, you give us your consent to the use of your personal data in accordance with Art. 6(1)(a) GDPR. In doing so, we store the IP address assigned by your Internet Service Provider (ISP), as well as the date and time of registration, in order to be able to trace any possible misuse of your email address at a later date. The data collected by us when you register for our email notification service for product availability are used strictly for the specified purpose.

You can unsubscribe from availability notifications at any time by sending a corresponding message to the controller named at the beginning. After unsubscribing, your email address will be deleted immediately from our distribution list set up for this purpose, unless you have expressly consented to further use of your data or we reserve the right to use your data beyond this, which is permitted by law and about which we inform you in this statement.

7.5 Cart reminders by email

If you abandon your purchase with us before completing the order, you have the option of being reminded once by email of the contents of your virtual shopping cart.

The only information required to send this reminder is your email address. Providing any additional data is voluntary and may be used to address you personally. For email delivery, we use the so-called double opt-in procedure, which ensures that you will only receive a notification once you have expressly confirmed your consent by activating a verification link sent to the email address provided.

By activating the confirmation link, you give us your consent to the use of your personal data in accordance with Art. 6(1)(a) GDPR for the purpose of sending a cart reminder. In doing so, we store the IP address assigned by your Internet Service Provider (ISP), as well as the date and time of registration, in order to be able to trace any possible misuse of your email address at a later date. The data collected by us when you register for our email notification service are used strictly for the specified purpose.

You can unsubscribe from cart reminders at any time by sending a corresponding message to the controller named at the beginning. After unsubscribing, your email address will be deleted immediately from our distribution list set up for this purpose, unless you have expressly consented to further use of your data or we reserve the right to use your data beyond this, which is permitted by law and about which we inform you in this statement.

8) Data processing for order handling

8.1 Submission of image files for order handling by email

On our website, we offer customers the opportunity to commission the personalization of products by submitting image files via email. The submitted image motif is used as a template for the personalization of the selected product.

Via the email address provided on the website, the customer can send one or more image files from the memory of the used Transmit data from the end device to us. We then collect, store, and use the files transmitted in this way exclusively for the production of the personalized product within the meaning of the respective service description on our website. If the transmitted image files are passed on to special service providers for the production and processing of the order, you will be explicitly informed of this in the following paragraphs. No further disclosure takes place. If the transmitted files or digital motifs contain personal data (in particular images of identifiable persons), all of the processing operations just described take place exclusively for the purpose of processing your online order in accordance with Art. 6(1)(b) GDPR.

After the order has been fully processed, the transmitted image files are automatically and completely deleted.

8.2 To the extent necessary for contract processing for delivery and payment purposes, the personal data collected by us will be passed on to the commissioned transport company and the commissioned credit institution in accordance with Art. 6(1)(b) GDPR.

If, on the basis of a corresponding contract, we owe you updates for goods with digital elements or for digital products, we process the contact details you provided when placing the order in order to inform you personally as part of our statutory information obligations pursuant to Art. 6(1)(c) GDPR. Your contact details will be used strictly for the purpose of communications about updates owed by us and, for this purpose, will only be processed by us to the extent necessary for the respective notification.

To process your order, we also work with the service provider(s) listed below, who support us in whole or in part in the performance of concluded contracts. Certain personal data will be transmitted to these service providers in accordance with the following information.

8.3 Post & DHL Shipping (official)

For shipment preparation, we use the services of the following provider: Deutsche Post DHL Research And Innovation GmbH, Kurt-Schumacher-Str. 1, 53113 Bonn
In accordance with Art. 6(1)(b) GDPR, we transmit digital shipping labels with your delivery information exclusively for the purpose of processing your online order from our order processing system to the provider, which then sends them to our local printers to enable printing. Data is disclosed only to the extent that this is actually necessary for processing.

8.4 Shopify Order Printer

For order processing, we use the following provider: Shopify International Limited, Victoria Buildings, 2nd floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland

Name, address, and, where applicable, other personal data will be disclosed to the provider for the purpose of processing the online order in accordance with Art. 6(1)(b) GDPR. Your data will be disclosed only to the extent actually necessary for processing the order. The provider is also used for accounting. In this way, the provider processes incoming and outgoing invoices as well as, where applicable, the bank transactions of our company in order to automatically record invoices, match them to transactions, and from this create financial accounting in a semi-automated process.

If personal data is also processed in this context, the processing is carried out in accordance with Art. 6(1)(f) GDPR on the basis of our legitimate interest in the efficient organization and documentation of our Business transactions.

8.5 Disclosure of personal data to shipping service providers

- Deutsche Post

As our shipping service provider, we use the following provider: Deutsche Post AG, Charles-de-Gaulle-Straße 20, 53113 Bonn, Germany

We disclose your email address and/or telephone number to the provider in accordance with Art. 6 para. 1 lit. a GDPR before the goods are delivered for the purpose of arranging a delivery date or providing delivery notification, provided that you have given your express consent to this during the order process. Otherwise, for the purpose of delivery in accordance with Art. 6 para. 1 lit. b GDPR, we disclose to the provider only the recipient’s name and delivery address. Disclosure takes place only to the extent necessary for the delivery of the goods. In this case, prior coordination of the delivery date with the provider or delivery notification is not possible.

Consent may be revoked at any time with future effect vis-à-vis the controller named above or the provider.
- DHL

As our shipping service provider, we use the following provider: DHL Paket GmbH, Sträßchensweg 10, 53113 Bonn, Germany

Consent may be revoked at any time with future effect vis-à-vis the controller named above or the provider.
- FedEx

As our shipping service provider, we use the following provider: FedEx Express Germany GmbH, Langer Kornweg 34 k,65451 Kelsterbach, Germany

Consent may be revoked at any time with future effect vis-à-vis the controller named above or the provider.
- UPS

As our shipping service provider, we use the following provider: United Parcel Service Deutschland Inc. & Co. OHG, Görlitzer Straße 1, 41460 Neuss, Germany

The Consent may be revoked at any time with future effect against the above-mentioned controller or against the provider.

8.6 Use of payment service providers (payment services)

- Apple Pay

If you choose the payment method “Apple Pay” of Apple Distribution International (Apple), Hollyhill Industrial Estate, Hollyhill, Cork, Ireland, payment processing is carried out via the “Apple Pay” function of your end device running iOS, watchOS or macOS by charging a payment card stored with “Apple Pay”. In this process, Apple Pay uses security features built into your device’s hardware and software to protect your transactions. To authorize a payment, you must therefore enter a code previously set by you and verify it using the “Face ID” or “Touch ID” function of your end device.

For the purpose of payment processing, the information you provide during the ordering process, together with information about your order, is transmitted to Apple in encrypted form. Apple then encrypts this data again with a developer-specific key before the data is transmitted to the payment service provider of the payment card stored in Apple Pay for payment processing. Encryption ensures that only the website through which the purchase was made can access the payment data. After the payment has been made, Apple sends your device account number and a transaction-specific, dynamic security code to the originating website to confirm that the payment was successful.

To the extent that personal data is processed during the transmissions described, such processing takes place exclusively for the purpose of payment processing pursuant to Art. 6(1)(b) GDPR.

Apple retains anonymized transaction data, including the approximate purchase amount, the approximate date and approximate time, as well as whether the transaction was completed successfully. The anonymization completely excludes any personal reference. Apple uses the anonymized data to improve Apple Pay and other Apple products and services.

If you use Apple Pay on the iPhone or Apple Watch to complete a purchase you made via Safari on Mac, the Mac and the authorization device communicate via an encrypted channel on Apple’s servers. Apple does not process or store any of this information in a format that can be used to identify you personally. You can disable the ability to use Apple Pay on your Mac in the settings of your iPhone. Go to “Wallet & Apple Pay”, and disable “Allow Payments on Mac”.

Further information on data protection at Apple Pay can be found at the following web address: https://support.apple.com/de-de/HT203027
- Google Pay

If you choose the payment method “Google Pay” of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”), payment processing is carried out via the “Google Pay” application on your mobile device running at least Android 4.4 (“KitKat”) and equipped with an NFC function by charging a payment card stored with Google Pay or a payment system verified there (e.g. PayPal). To authorize a payment via Google Pay of more than €25, you must first unlock your mobile device using the verification method set up for it (such as face recognition, password, fingerprint, or pattern).

For the purpose of During payment processing, the information you provide as part of the order process, together with information about your order, is transmitted to Google. Google then transmits your payment information stored in Google Pay in the form of a one-time transaction number to the originating website, which is used to verify that payment has been made. This transaction number contains no information about the actual payment details of the payment methods stored in your Google Pay account; instead, it is created and transmitted as a one-time valid numerical token. In all transactions via Google Pay, Google acts solely as an intermediary for processing the payment transaction. The transaction is carried out exclusively between the user and the originating website by debiting the payment method stored in Google Pay.

To the extent that personal data is processed in the transmissions described above, such processing takes place solely for the purpose of payment processing pursuant to Art. 6(1)(b) GDPR.

Google reserves the right to collect, store, and evaluate certain transaction-specific information for each transaction made via Google Pay. This includes the date, time, and amount of the transaction, merchant location and description, a description of the goods or services purchased provided by the merchant, photos you have attached to the transaction, the name and email address of the seller and buyer or sender and recipient, the payment method used, your description of the reason for the transaction, and, where applicable, the offer associated with the transaction.

According to Google, this processing takes place exclusively pursuant to Art. 6(1)(f) GDPR on the basis of the legitimate interest in proper accounting, verification of transaction data, and optimization and maintenance of the Google Pay service.

Google also reserves the right to combine the processed transaction data with additional information collected and stored by Google when you use other Google services.

The terms of use for Google Pay can be found here:

https://payments.google.com/payments/apis-secure/u/0/get_legal_document?ldo=0&ldt=googlepaytos&ldl=de
Further information on data protection at Google Pay can be found at the following internet address:
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=de
- Klarna

On this website, one or more online payment methods from the following provider are available: Klarna Bank AB, Sveavägen 46, 111 34 Stockholm, Sweden

If you choose a payment method offered by the provider for which you make an advance payment (for example, credit card payment), the payment data you provide during the order process (including name, address, bank and payment card information, currency, and transaction number), as well as information about the contents of your order, will be transmitted to this provider pursuant to Art. 6(1)(b) GDPR. In this case, your data is transferred solely for the purpose of payment processing with the provider and only to the extent necessary for this purpose.

If you choose a payment method for which the provider makes an advance payment (for example, purchase on invoice or installment purchase, or direct debit), you will also be asked during the ordering process to provide certain personal data (first and last name, street, House number, postal code, city, date of birth, email address, telephone number, and, if applicable, details of an alternative means of payment) to be provided.

In order to safeguard our legitimate interest in determining the creditworthiness of our customers, we will forward this data to the provider pursuant to Art. 6(1)(f) GDPR for the purpose of a credit check. Based on the personal data provided by you as well as other data (such as shopping cart, invoice amount, order history, payment experience), the provider checks whether the payment option selected by you can be granted with regard to payment and/or default risk.

For the decision in the course of the application review, identity and credit information from the following credit agencies may also be taken into account in addition to provider-internal criteria pursuant to Art. 6(1)(f) GDPR:

https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agencies

The credit report may contain probability values (so-called score values). Insofar as score values are incorporated into the result of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. Among other things, but not exclusively, address data is included in the calculation of the score values.

You may object to this processing of your data at any time by sending us or the provider a message. However, the provider may still be entitled to process your personal data if this is necessary for the contractual processing of payments.
- Paypal

On this website, one or more online payment methods from the following provider are available: PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg

If you select a payment method offered by the provider for which you make an advance payment, the payment data you provide during the ordering process (including name, address, bank and card information, currency and transaction number), as well as information about the contents of your order, will be passed on to the provider in accordance with Art. 6(1)(b) GDPR. In this case, your data will be forwarded exclusively for the purpose of payment processing with the provider and only to the extent necessary for this purpose.

If you select a payment method for which we make an advance payment, you will also be asked during the ordering process to provide certain personal data (first and last name, street, house number, postal code, city, date of birth, email address, telephone number, and, if applicable, details of an alternative means of payment).

In such cases, in order to safeguard our legitimate interest in determining your creditworthiness, we will forward this data to the provider pursuant to Art. 6(1)(f) GDPR for the purpose of a credit check. Based on the personal data provided by you as well as other data (such as shopping cart, invoice amount, order history, payment experience), the provider checks whether the payment option selected by you can be granted with regard to payment and/or default risk.

You may object to this processing of your data at any time by sending us or the provider a message. However, the provider may still be entitled to process your personal data insofar as this is necessary for payment processing in accordance with the contract.
- Shopify Payments

On this website, one or more online payment methods from the following provider are available: Shopify International Limited, Victoria Buildings, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland

If you select a payment method from the provider for which you make advance payment (for example, credit card payment), the payment data you provide during the ordering process (including name, address, bank and card information, currency and transaction number) as well as information about the contents of your order will be passed on to this provider in accordance with Art. 6 para. 1 lit. b GDPR. Your data will be disclosed in this case solely for the purpose of payment processing with the provider and only to the extent necessary for this purpose.

9) Web analytics services

9.1 Google Analytics 4

This website uses Google Analytics 4, a web analytics service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"), which enables an analysis of your use of our website.

By default, when you visit the website, Google Analytics 4 sets cookies that are stored as small text files on your device and collect certain information. This information also includes your IP address, although Google truncates the last digits of it to exclude any direct personal reference.

The information is transmitted to Google's servers and processed there. This may also involve transmission to Google LLC based in the USA.

Google uses the information collected on our behalf to evaluate your use of the website, to compile reports on website activity for us, and to provide other services relating to website use and internet use. The IP address transmitted by your browser within the scope of Google Analytics and truncated in this process will not be merged with other Google data. The data collected in connection with the use of Google Analytics 4 is stored for a period of two months and then deleted.

All processing described above, in particular the setting of cookies on the device used, is carried out only if you have given us your express consent pursuant to Art. 6 para. 1 lit. a GDPR.
Without your consent, Google Analytics 4 will not be used during your visit to the site. You may withdraw your consent at any time with future effect. To exercise your right of withdrawal, please deactivate this service using the "Cookie Consent Tool" provided on the website.

We have concluded a data processing agreement with Google, which ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

Further legal information on Google Analytics 4 can be found at https://business.safety.google/intl/de/privacy/, https://policies.google.com/privacy?hl=de&gl=de and at https://policies.google.com/technologies/partner-sites

Demographic characteristics
Google Analytics 4 uses the special function "demographic characteristics" and can use it to generate statistics that provide statements about the age, gender and interests of site visitors. This is done through the analysis of advertising and information by third parties. This enables target audiences to be identified for marketing activities. However, the collected data cannot be assigned to any specific person and is deleted after being stored for a period of two months.

Google Signals
As an extension to Google Analytics 4, Google Signals may be used on this website to generate cross-device reports. If you have enabled personalized ads and linked your devices to your Google Account, Google may, subject to your consent to the use of Google Analytics pursuant to Art. 6(1)(a) GDPR, analyze your usage behavior across devices and create database models, including those for cross-device conversions. We do not receive any personal data from Google, only statistics. If you would like to stop cross-device analysis, you can deactivate the “Personalized advertising” function in the settings of your Google Account. To do so, follow the instructions on this page: https://support.google.com/My-Ad-Center-Help/answer/12155764?hl=de
Further information on Google Signals can be found at the following link: https://support.google.com/analytics/answer/7532985?hl=de

UserIDs
As an extension to Google Analytics 4, the “UserIDs” function may be used on this website. If you have consented to the use of Google Analytics 4 pursuant to Art. 6(1)(a) GDPR, set up an account on this website, and log in with this account on different devices, your activities, including conversions, can be analyzed across devices.

Collection of user-provided data
To improve the analysis results for users whose contact details we have received in the context of business or business-like relationships, we use the function for the “collection of user-provided data”.
Subject to your express consent pursuant to Art. 6(1)(a) GDPR, we transmit one or more files containing customer data aggregated to your person (above all email address and telephone number) to Google electronically as part of this function. Google does not gain access to plain text data; instead, the information in the customer files is automatically encrypted during the transmission process by means of a special algorithm. Google can then use the encrypted information only to assign it to existing Google accounts that the data subjects have created.
The processing serves to refine measurement data, improves cross-device user tracking, and enables the integration of analysis results into Google Ads’ ad personalization and conversion tracking functions.
You may revoke your consent to us at any time with future effect. Further information on Google’s data protection measures regarding the transmission of customer data can be found here: https://support.google.com/google-ads/answer/6334160?hl=de&ref_topic=10550182

For data transfers to the US, the provider has joined the EU-U.S. Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

9.2 Google Tag Manager

This website uses the “Google Tag Manager”, a service provided by the following provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: “Google”).

Google Tag Manager provides a technical foundation for bundling various web applications, including tracking and analytics services, and for calibrating, controlling, and linking them to conditions via a unified user interface. Google Tag Manager itself does not store any information on users’ devices or read such information. Nor does the service perform any independent data analyses. However, when a page is accessed, your IP address is transmitted to Google via Google Tag Manager and may be stored there. It may also be transmitted to servers of Google LLC in the USA.

This processing is carried out only if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. Without this consent, Google Tag Manager will not be used during your visit to the website. You may withdraw your consent at any time with future effect. To exercise your withdrawal, please deactivate this service in the “Cookie Consent Tool” provided on the website.

We have concluded a data processing agreement with the provider, which ensures the protection of our website visitors’ data and prohibits unauthorized disclosure to third parties.

Further legal information on Google Tag Manager can be found at https://business.safety.google/intl/de/privacy/ and https://policies.google.com/privacy?hl=de&gl=de

9.3 Hotjar

This website uses the web analytics service provided by the following provider: Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta

Using cookies and/or comparable technologies (tracking pixels, web beacons, algorithms for reading end-device and browser information), the service collects and stores pseudonymized visitor data, including information from the device used such as IP address and browser information, in order to evaluate it for statistical analyses of user behavior on our website and to create pseudonymized usage profiles. Among other things, this makes it possible to analyze movement patterns (so-called heat maps), which show the duration of page visits as well as interactions with page content (e.g. text entries, scrolling, clicks and mouse-overs). Pseudonymization generally excludes direct personal identification. No combination with clear-text data collected about you by other means takes place.

All of the processing described above, in particular reading or storing information on the device used, will only be carried out if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. You may withdraw your consent at any time with future effect by deactivating this service in the “Cookie Consent Tool” provided on the website.

We have concluded a data processing agreement with the provider, which ensures the protection of our website visitors’ data and prohibits unauthorized disclosure to third parties.

9.4 Shopify Analytics

This website uses the Web analytics service of the following provider: Shopify International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland

Data are also transferred to: Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4, Canada

Using cookies and/or comparable technologies (tracking pixels, web beacons, algorithms for reading device and browser information), the service collects and stores pseudonymized visitor data, including information about the device used such as IP address and browser information, in order to evaluate it for statistical analyses of user behavior on our website and to create pseudonymized usage profiles. Among other things, this makes it possible to analyze movement patterns (so-called heatmaps), which show the duration of page visits as well as interactions with page content (e.g., text input, scrolling, clicks, and mouse-overs). Pseudonymization generally excludes direct personal identification. There is no merging with plain-text data collected about you in any other way.

All of the processing described above, in particular the reading or storage of information on the device used, takes place only if you have given us your express consent pursuant to Art. 6 para. 1 lit. a GDPR. You may revoke your consent at any time with effect for the future by deactivating this service in the "cookie consent tool" provided on the website.

We have concluded a data processing agreement with the provider, which protects our website visitors' data and prohibits disclosure to third parties.

In the event of data transfer to Canada, an adequate level of data protection is ensured by an adequacy decision of the European Commission.

10) Retargeting/ Remarketing and Conversion Tracking

10.1 Meta Pixel with extended data matching

Within our online offering, we use the "Meta Pixel" service in extended data matching mode from the following provider: Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland ("Meta")

If a user clicks on an advertisement placed by us on Facebook or Instagram, the URL of our linked page is extended by a parameter with the help of "Meta Pixel". This URL parameter is then written into the user's browser after redirection by a cookie set by our linked page itself. In addition, this cookie captures specific customer data such as the email address that we collect on our website linked to the Facebook or Instagram ad during processes such as purchases, account logins or registrations (extended data matching). The cookie is then read and enables the transmission of the data, including the specific customer data, to Meta.

We use "Meta Pixel" with extended data matching to make our advertisements (so-called "ads") on Facebook and/or Instagram more effective and to ensure that they correspond to the users' interests or have certain characteristics (e.g., interests in specific topics or products identified on the basis of the websites visited), which we transmit to Meta (so-called "Custom Audiences").

In addition, we analyze the effectiveness of our advertisements by tracking whether users were redirected to our website after clicking on an advertisement (conversion). Compared with the standard version of "Meta Pixel", the extended data matching feature helps us measure the effectiveness of our advertising campaigns more accurately by capturing more attributed conversions.

All transmitted data are stored by Meta and processed in such a way that it can be assigned to the respective user profile and Meta can use the data for its own advertising purposes in accordance with Meta's data usage policies (https://www.facebook.com/about/privacy/). The data may enable Meta and its partners to place ads on and off Facebook.

All processing described above, in particular the setting of cookies for reading information on the device used, will only take place if you have given us your express consent in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future by deactivating this service in the "Cookie Consent Tool" provided on the website.

We have concluded a data processing agreement with the provider, which ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties.

The information generated by Meta is generally transferred to a Meta server and stored there; in this context, it may also be transferred to servers of Meta Platforms Inc. in the USA.

For data transfers to the USA, the provider has joined the EU-U.S. Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

10.2 Google Ads Remarketing

This website uses the retargeting technology of the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

For this purpose, Google sets a cookie in the browser of your device, which automatically enables interest-based advertising based on a pseudonymous cookie ID and the pages you have visited. Any further data processing only takes place if you have consented to Google linking your Internet and app browser history with your Google Account and using information from your Google Account to personalize ads you see on the web. If, in this case, you are logged in to Google during your visit to our website, Google uses your data together with Google Analytics data to create and define audience lists for cross-device remarketing. For this purpose, your personal data is temporarily linked by Google with Google Analytics data in order to build audiences. In the context of using Google Ads Remarketing, personal data may also be transferred to the servers of Google LLC in the USA.

All processing described above, in particular the setting of cookies for reading information on the device used, will only take place if you have given us your express consent in accordance with Art. 6 para. 1 lit. a GDPR. Without this consent, retargeting technology will not be used during your visit to the site.

You can revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the "Cookie Consent Tool" provided on the website.

Details on the processing initiated by Google and on Google's handling of website data can be found here: https://policies.google.com/technologies/partner-sites

Further information on Google’s privacy policy can be found here: https://business.safety.google/intl/de/privacy/ and https://www.google.de/policies/privacy/

10.3 Google Ads Conversion Tracking

We use Google Ads to draw attention to our attractive offers on external websites with the help of advertising materials (so-called Google AdWords). We can determine how successful individual advertising measures are in relation to campaign data. In doing so, we pursue the interest of showing you advertising that is relevant to you, making our website more interesting for you, and achieving a fair calculation of the advertising costs incurred.

The conversion-tracking cookie is set when a user clicks on an ad served by Google. Cookies are small text files stored on your device. These cookies usually expire after 30 days and are not used for personal identification. If the user visits certain pages of this website and the cookie has not yet expired, Google and we can recognize that the user clicked the ad and was redirected to this page. Each Google Ads customer receives a different cookie. Cookies can therefore not be tracked across the websites of Google Ads customers. The information obtained through the conversion cookie is used to create conversion statistics for Google Ads customers who have opted in to conversion tracking. Customers learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion-tracking tag. However, they do not receive any information that can personally identify users.

As part of using Google Ads, personal data may also be transmitted to the servers of Google LLC in the USA.

Details on the processing initiated by Google Ads Conversion Tracking and on Google’s handling of website data can be found here: https://policies.google.com/technologies/partner-sites

All of the processing described above, in particular the setting of cookies for reading information on the device used, will only take place if you have given us your express consent in accordance with Art. 6 para. 1 lit. a GDPR. You may withdraw your consent at any time with effect for the future by deactivating this service in the "Cookie Consent Tool" provided on the website.

You can also permanently object to the setting of cookies by Google Ads Conversion Tracking by downloading and installing the Google browser plug-in available at the following link:
https://support.google.com/My-Ad-Center-Help/answer/12155656?hl=de

In order to provide users whose data we have received in the context of business or business-like relationships with more interest-based advertising To address this, we use a customer matching function as part of Google Ads. For this purpose, we electronically transmit one or more files containing aggregated customer data (primarily email addresses and telephone numbers) to Google. Google does not gain access to plain-text data; instead, it automatically encrypts the information in the customer files during the transmission process using a special algorithm. Google may then use the encrypted information only to match it with existing Google accounts that the individuals concerned have created. This makes it possible to display personalized advertising across all Google services linked to the respective Google account.

The transfer of customer data to Google takes place exclusively if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. You may withdraw this consent at any time with future effect. Further information on Google’s data protection measures regarding the customer matching function can be found here: https://support.google.com/google-ads/answer/6334160?hl=de&ref_topic=10550182
Google’s privacy policy can be viewed here: https://business.safety.google/intl/de/privacy/ and https://www.google.de/policies/privacy/

For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which, on the basis of an adequacy decision of the European Commission, ensures compliance with the European level of data protection.

10.4 Google Ads Conversion Tracking

This website uses the online advertising program "Google Ads" and, as part of Google Ads, conversion tracking by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). We use Google Ads to draw attention to our attractive offers on external websites with the aid of advertising materials (so-called Google AdWords). Using the data from the advertising campaigns, we can determine how successful the individual advertising measures are. In doing so, we aim to show you advertising that is of interest to you, make our website more appealing to you, and ensure a fair calculation of the advertising costs incurred.

The conversion-tracking cookie is set when a user clicks on an Ads ad served by Google. Cookies are small text files stored on your end device. These cookies usually expire after 30 days and are not used for personal identification. If the user visits certain pages of this website and the cookie has not yet expired, Google and we can recognize that the user clicked on the ad and was redirected to this page. Each Google Ads customer receives a different cookie. Cookies therefore cannot be tracked across the websites of Google Ads customers. The information collected with the help of the conversion cookie is used to compile conversion statistics for Google Ads customers who have opted for conversion tracking. Customers learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information that could personally identify users. In connection with the use of Google Ads it may also result in the transfer of personal data to the servers of Google LLC. in the USA.

Details on the processing triggered by Google Ads Conversion Tracking and on Google’s handling of website data can be found here: https://policies.google.com/technologies/partner-sites

All of the processing described above, in particular the use of cookies to read information from the device used, will only take place if you have given us your express consent pursuant to Art. 6(1)(a) GDPR. You may revoke any consent you have given at any time with effect for the future by deactivating this service in the “Cookie Consent Tool” provided on the website.

You can also permanently object to the setting of cookies by Google Ads Conversion Tracking by downloading and installing the browser plug-in available from the following link:
https://support.google.com/My-Ad-Center-Help/answer/12155656?hl=de

Please note that certain functions of this website may not be available, or may only be available to a limited extent, if you have deactivated the use of cookies.
Google’s privacy policy can be found here: https://business.safety.google/intl/de/privacy/ and https://www.google.de/policies/privacy/

11) Site functionalities

11.1 Youtube

This website uses plugins for displaying and playing videos from the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data may also be transferred to: Google LLC., USA

When you visit a page of our website that contains such a plugin, your browser establishes a direct connection to the provider’s servers no later than when the video is played in order to load the content. In doing so, certain information, including your IP address, is transmitted to the provider.

If playback of embedded videos is started via the plugin, the provider also uses cookies to collect information about user behavior, compile playback statistics, and prevent abusive behavior.

If you are logged into a user account with the provider during your visit to the site, your data will be assigned directly to your account when you click on a video. If you do not want your data to be associated with your account, you must log out before pressing the play button.

All of the aforementioned processing activities, in particular the setting of cookies for reading information on the device used, take place only if you have given us your express consent in accordance with Art. 6(1)(a) GDPR. You may withdraw your consent at any time with effect for the future by deactivating this service via the “Cookie Consent Tool” provided on the website.

For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which, on the basis of a ensures compliance with the European level of data protection pursuant to an adequacy decision of the European Commission.

11.2 Judge.me

Our website incorporates graphic elements from the following provider for the display of external customer reviews and/or an externally awarded trust seal: Judge.me Ltd., c/o Buckworths, 2nd Floor, 1-3 Worship Street, London, England, EC2A 2AB, United Kingdom

When you access a page of our website that contains such graphic elements, your browser establishes a direct connection to the provider’s servers in order to load the elements properly. In doing so, certain browser information, including your IP address, is transmitted to the provider.

To the extent that personal data is processed in this context, this is done in accordance with Art. 6(1)(f) GDPR on the basis of our legitimate interest in the optimal marketing of our offering and the appealing presentation of our website.

We have concluded a data processing agreement with the provider, which ensures the protection of our site visitors’ data and prohibits unauthorized disclosure to third parties.

Where data is transferred to the provider’s location, an adequate level of data protection is ensured by an adequacy decision of the European Commission.

11.3 - Google reCAPTCHA

On this website, we use the CAPTCHA service of the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data may also be transferred to: Google LLC, USA.

For the visual design of the CAPTCHA window, the provider uses “Google Fonts,” i.e. fonts loaded from the internet by Google. No processing of any information beyond the above-mentioned data already transmitted to Google through the functionality of reCAPTCHA takes place in this context.

The service checks whether an input is made by a natural person or abusively by means of machine-based and automated processing, and blocks spam, DDoS attacks, and similar automated malicious access. To ensure that an action is carried out by a human and not by an automated bot, the provider collects the IP address of the end device used, identifying data of the browser and operating system type used, as well as the date and duration of the visit, and transmits these to the provider’s servers for evaluation. Cookies may be used in this process, i.e. small text files stored in the browser of the end device.

Insofar as the processing described above is carried out on the basis of cookies, these cookies are only set if you have given us your express consent in accordance with Art. 6(1)(a) GDPR. You may revoke any consent you have given at any time with future effect by deactivating this service in the “Cookie Consent Tool” provided on the website.

If the processing described above is carried out without the use of cookies, the legal basis is our legitimate interest in determining individual responsibility on the internet and preventing misuse and spam pursuant to Art. 6(1)(f) GDPR.

We have concluded a data processing agreement with the provider, which ensures the protection of our site visitors’ data and prohibits unauthorized disclosure to third parties.

11.4 Google Customer Reviews (formerly the Google Certified Merchant Program)

We work with Google as part of the “Google Customer Reviews” program. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). This program gives us the opportunity to collect customer reviews from users of our website. After a purchase on our website, you will be asked whether you would like to take part in an email survey from Google.

If you give your consent in accordance with Art. 6(1)(a) GDPR, we will transmit your email address to Google. You will then receive an email from Google Customer Reviews asking you to rate your purchase experience on our website. The rating you provide will then be combined with our other ratings and displayed in our Google Customer Reviews badge as well as in our Merchant Center dashboard. Your rating will also be used for Google Seller Ratings. In the context of using Google Customer Reviews, personal data may also be transferred to the servers of Google LLC in the USA.

You may withdraw your consent at any time by sending a message to the controller responsible for data processing or to Google.

Further information on Google’s privacy policy can be found here: https://business.safety.google/intl/de/privacy/

12) Tools and Miscellaneous

12.1 - DATEV

For our bookkeeping, we use the service of the cloud-based accounting software from the following provider: DATEV eG, Paumgartnerstr. 6-14, 90429 Nuremberg, Germany

The provider processes incoming and outgoing invoices and, where applicable, our company’s bank transactions in order to automatically capture invoices, match them to transactions, and generate financial accounting records from this in a semi-automated process.

If personal data is also processed in this context, the processing is carried out on the basis of our legitimate interest in the efficient organization and documentation of our business processes pursuant to Art. 6(1)(f) GDPR.
- Lexware Office

For our bookkeeping, we use the service of the cloud-based accounting software from the following provider: Haufe-Lexware GmbH & Co. KG, Munzinger Straße 9, 79111 Freiburg, Germany

For our bookkeeping, we use the service of the cloud-based accounting software from the following provider: pathway solutions gmbh, c/o ba tax gmbh, Alstertwiete 3, 20099 Hamburg

To the extent that personal data are also processed in this context, the processing is carried out on the basis of our legitimate interest in the efficient organization and documentation of our business processes pursuant to Art. 6(1)(f) GDPR.

12.2 Cookie Consent Tool

This website uses a so-called “Cookie Consent Tool” to obtain valid user consent for cookies requiring consent and cookie-based applications. The “Cookie Consent Tool” is displayed to users when they access the site in the form of an interactive user interface, where consent for certain cookies and/or cookie-based applications can be given by ticking checkboxes. By using the tool, all cookies/services requiring consent are loaded only if the respective user grants the corresponding consent by ticking the relevant box. This ensures that such cookies are set on the user’s device only if consent has been given.

The tool sets technically necessary cookies in order to store your cookie preferences. As a rule, no personal user data are processed in this context.

If, in individual cases, personal data (such as the IP address) are nevertheless processed for the purpose of storing, assigning, or logging cookie settings, this is done pursuant to Art. 6(1)(f) GDPR on the basis of our legitimate interest in consent management for cookies that is compliant with the law, tailored to the user, and user-friendly, and thus in the legally compliant design of our website.

Another legal basis for the processing is Art. 6(1)(c) GDPR. As the controller, we are subject to the legal obligation to make the use of technically unnecessary cookies dependent on the respective user consent.

Where necessary, we have concluded a data processing agreement with the provider, which ensures the protection of our site visitors’ data and prohibits unauthorized disclosure to third parties.

You can find further information about the operator and the settings options for the Cookie Consent Tool directly in the corresponding user interface on our website.

12.3 Judge.me

We use the services of the following provider to verify and publish customer reviews: Judge.me Ltd., c/o Buckworths, 2nd Floor, 1-3 Worship Street, London, England, EC2A 2AB, United Kingdom

If you submit a review on our website, your first and last name, email address, order date and order number, as well as product name and international references (GTIN/ISDNF), will be collected, transmitted to the provider, and evaluated there in order to decide whether a customer review is legitimate for a specific order. These processing activities are carried out pursuant to Art. 6(1)(f) GDPR on the basis of our legitimate interest in ensuring the authenticity of customer reviews by confirming their transaction reference and preventing review abuse. After the review has been checked and approved, the data are deleted by the provider.

When data are transferred to the provider’s location, an adequate level of data protection is ensured by an adequacy decision of the European Commission.

13) Data Subject Rights

13.1 Applicable data protection law grants you the following data subject rights vis-à-vis the controller with regard to the processing of your personal data (rights of access and intervention), whereby reference is made to the legal basis cited for the respective conditions for exercising these rights:

Right of access pursuant to Art. 15 DSGVO;
Right to rectification pursuant to Art. 16 GDPR;
Right to erasure pursuant to Art. 17 GDPR;
Right to restriction of processing pursuant to Art. 18 GDPR;
Right to be informed pursuant to Art. 19 GDPR;
Right to data portability pursuant to Art. 20 GDPR;
Right to withdraw consent given pursuant to Art. 7(3) GDPR;
Right to lodge a complaint pursuant to Art. 77 GDPR.

13.2 RIGHT TO OBJECT

IF WE PROCESS YOUR PERSONAL DATA WITHIN THE FRAMEWORK OF A BALANCING OF INTERESTS ON THE BASIS OF OUR OVERRIDING LEGITIMATE INTEREST, YOU HAVE THE RIGHT AT ANY TIME TO OBJECT TO THIS PROCESSING, ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION, WITH EFFECT FOR THE FUTURE.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE DATA CONCERNED. HOWEVER, FURTHER PROCESSING REMAINS RESERVED IF WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OVERRIDE YOUR INTERESTS, FUNDAMENTAL RIGHTS AND FUNDAMENTAL FREEDOMS, OR IF THE PROCESSING SERVES THE ESTABLISHMENT, EXERCISE OR DEFENCE OF LEGAL CLAIMS.

IF YOUR PERSONAL DATA ARE PROCESSED BY US FOR THE PURPOSE OF DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH ADVERTISING. YOU MAY EXERCISE YOUR RIGHT OF OBJECTION AS DESCRIBED ABOVE.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE DATA CONCERNED FOR DIRECT MARKETING PURPOSES.

14) Retention period for personal data

The retention period for personal data is determined by the respective legal basis, the purpose of processing and, where applicable, also by the respective statutory retention period (e.g. retention periods under commercial and tax law).

When processing personal data on the basis of express consent pursuant to Art. 6(1)(a) GDPR, the data concerned will be stored until you withdraw your consent.

If statutory retention periods apply to data processed in the context of contractual or quasi-contractual obligations on the basis of Art. 6(1)(b) GDPR, such data will be routinely erased after the retention periods have expired, provided that they are no longer required for the performance or initiation of the contract and/or no legitimate interest on our part continues to justify their storage.

When processing personal data on the basis of Art. 6(1)(f) GDPR, such data will be stored until you exercise your right to object pursuant to Art. 21(1) GDPR, unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves the establishment, exercise or defence of legal claims.

When processing personal data for the purpose of direct advertising on the basis of Art. 6(1)(f) GDPR, such data will be stored until you exercise your right to object pursuant to Art. 21(2) GDPR.

Unless otherwise stated in the other information in this policy regarding specific processing situations, stored personal data will otherwise be erased when it is no longer necessary for the purposes for which it was collected or otherwise processed.

Updated: 16/04/2026, 13:49:10

Kitchen by Nature at a glance

· 01 ·

Natural Materials in the Kitchen

In a kitchen that’s used every day, materials make all the difference. At Kitchen by Nature, we deliberately choose natural materials. Whether olive wood, walnut wood, Hevea wood, or Damascus steel. These materials are robust, long-lasting, and bring a character that plastic or interchangeable mass-produced goods can never match. Wood feels wonderful in the hand, brings warmth to the worktop, and develops its own patina over time. Damascus steel stands out for its exceptional sharpness and durability. If you’re looking for premium kitchen utensils that are practical and visually striking at the same time, Kitchen by Nature offers a range that combines high standards with aesthetic appeal.

· 02 ·

From Preparation to Serving

The Kitchen by Nature range accompanies you through every step in the kitchen. For prep, you’ll find cutting boards made from olive wood and walnut wood, as well as sharp knives made from Damascus steel. When cooking, wooden spoons, spatulas, and dough scrapers help you out; they are heat-resistant and gentle on coated pans. For seasoning, our salt and pepper mills with precise ceramic and carbon steel grinding mechanisms bring out just the right aroma. And when serving, our wooden bowls, serving boards, and small bowls complete the picture. A thoughtfully curated range that covers the essential tools for a well-equipped kitchen and excels in quality, appearance, and function.

· 03 ·

Gifts for Home Cooks and Food Lovers

What do you give someone who loves to cook? Whether for a birthday, Christmas, a wedding, or a housewarming: products from Kitchen by Nature always go down well. High-quality kitchen utensils are gifts that will actually be used and bring joy for years to come. A solid olive wood cutting board, a sharp Damascus knife, or an elegant salt and pepper mill set are gifts with real character. Then there’s the packaging: our products are lovingly shipped in boxes with wood wool or hand-drawn cartons, turning the unboxing into a moment to remember. That’s how a gift becomes an experience.

· 04 ·

Caring for Wooden Utensils and Preserving Their Longevity

High-quality kitchen utensils are an investment that pays off when they’re properly cared for. Wooden products such as cutting boards, cooking spoons, or bowls should be washed by hand and dried thoroughly. Occasional oiling with food-safe oil keeps the wood supple and protects it for years to come. Damascus knives stay sharp over time with regular honing and careful cleaning. Our salt and pepper mills with ceramic grinders are particularly easy to care for and designed for years of use. With the right care, products from Kitchen by Nature become long-term companions in the kitchen, retaining their value and developing even more character with each passing year. You’ll find more tips on proper care in our FAQ section.

· 05 ·

Kitchen Utensils for Restaurants and Catering

Even in professional catering, it comes down to tools that prove themselves day after day. The products from Kitchen by Nature are made with the aim of meeting the highest standards in the kitchen. Our Damascus knives deliver the cutting precision professionals expect. Sturdy cutting boards made from olive wood and walnut wood stand up to daily use, and our salt and pepper mills provide that finishing touch at the table that makes all the difference. Whether fine dining, a bistro or an upscale inn: Kitchen by Nature supplies premium kitchen equipment that chefs and restaurateurs can rely on.

· 06 ·

Responsibly Sourced Materials

At Kitchen by Nature, we deliberately choose materials that are natural, durable and timelessly beautiful. Our olive wood comes from old trees in Tunisia that no longer bear fruit, giving them a second life in your kitchen. We carefully source walnut wood, Damascus steel and hevea wood from suppliers who meet our quality standards. We also keep our packaging simple, sustainable and yet refined. Hand-drawn boxes or cartons with wood wool create an unboxing experience that reflects the brand. To us, responsibility means thoughtful material choices, honest communication and products you can buy and give with confidence.