figurine-and-fabric-rolls-center

VALORIA Privacy Policy

Status: 23.05.2024

The protection of your personal data is of particular importance to us. We therefore process your data exclusively on the basis of the applicable legal provisions (EU General Data Protection Regulation GDPR, TKG 2021). In this data protection information we inform you about the most important aspects of data processing in the context of our activities.

Our website can generally be used without providing personal data. If you enter personal data, e.g. for the purpose of contacting us or subscribing to a newsletter, we will pass the necessary information on to companies that process data on our behalf (e.g. send the newsletter). We only commission companies that comply with the General Data Protection Regulation.

Encrypted transmission

For security and data protection reasons, this website uses SSL encryption, which prevents third parties from intercepting and reading the data you enter during transmission. You can recognize active encryption by the padlock or similar symbols in the address bar of your browser.

Website operated by Shopify

This website is hosted by Shopify, a brand of Shopify International Ltd, c/o Intertrust Ireland, Haddington Road, Dublin 4, D04XN32, Ireland. When you visit our website, Shopify collects your information for the following purposes:


  • Providing, improving, and customizing the Shopify Services

  • Implementation of your data protection preferences

  • Product research and development

  • Advertising and Marketing

  • communication

  • Authentication, integrity, security and protection of your account

  • and for legal reasons.

The following data is specifically collected and processed by Shopify:


  • Profile and contact information

  • Device information
  • Payment Information

  • Use of Shopify Consumer Services

  • Settings and privacy preferences

  • Communicating with Shopify social media accounts

  • Email and shopping service integrations

The data processing is carried out on the basis of Art. 6 Para. 1 lit. f (legitimate interests) of the GDPR. The legitimate interest within the meaning of the GDPR is the attractive and technically flawless presentation of our website for marketing and sales purposes.

For more information, see the Shopify Privacy Policy .

Server Protocols

The server that provides this website stores information that is automatically transmitted to us by your browser in so-called log files. These are:


  • Browser type and version

  • Operating system used

  • The page (URL) from which you came to us

  • The IP address of the accessing computer

  • Time of request

This data is used exclusively for the technical monitoring of the web server (utilization, optimization, error detection, security) and is absolutely necessary for this purpose. It is not linked to other data sources, so it cannot be assigned to individual people. It is deleted after three months.

The data processing is carried out on the basis of Art. 6 paragraph 1 letter f (legitimate interests) of the GDPR. The legitimate interest within the meaning of the GDPR is the proper and secure functioning of the website.


Google reCaptcha

We use the service “Google reCaptcha” provided by Google Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA, to protect our website from spam and misuse.

For this purpose, data is transmitted to Google that makes it possible to distinguish between humans and robots. In most cases, this happens without a human having to answer questions or recognize images.

The data processing is carried out on the basis of Art 6 Para 1 lit f (legitimate interest) of the GDPR.

Our concern within the meaning of the GDPR (legitimate interest) is to protect our website from spam and misuse.

The Google terms of use and further information on the data processed can be found under the following link: https://www.google.com/analytics/terms/de.html


Processing of orders in the webshop

For the purpose of processing your orders, we store the following data entered by you during the ordering process:


  • Name Address

  • Telephone number.

  • E-mail address

  • the selected products

  • the IP address of the device with which the order was placed

We pass on the contact details for the purpose of processing the payment via Shopify as our payment service provider. The information required for payment processing includes:
Bank details, such as account numbers or credit card numbers, passwords, TANs and checksums as well as contract, amount and recipient-related information.
The information is required to carry out the transactions. The bank details you enter during the payment process, such as account numbers or credit card numbers, passwords, TANs and checksums, are only processed by the payment service provider and stored by them. We only receive confirmation of the payment and do not store any account information.

In addition, we will pass on your contact details (name, address, different delivery address) to a shipping service provider (e.g. the Austrian Post) if necessary to process the shipment of the goods.

The legal basis for the processing of this data is Art. 6 Paragraph 1 Letter b of the GDPR (necessary for the performance of the contract). The data will be deleted after the statutory retention periods have expired, i.e. after 7 years.

Contact us

If you contact us using a form on the website, by email or by other means, the data you provide (name, email address and optionally telephone number) will be stored by us for one year for the purpose of processing your request and in the event of follow-up questions. If a contract results from the request, the statutory retention periods apply. We will not pass on this data without your consent. The data processing is carried out on the basis of Art. 6 Para. 1 lit. b (performance of contract) and Art. 6 Para. 1 lit. a (consent) of the GDPR.

Data processing in the context of order fulfilment and customer service

For the purpose of fulfilling the contract, access data to online services you use, such as web hosting, email providers, office solutions, social media platforms, etc., will also be stored if necessary for the order you have placed and actively transmitted by you.

The storage takes place

  • On encrypted local computer systems or portable computers secured by passwords and physical access protection.

  • In the encrypted and password-protected cloud solution Google Cloud

We use the following services to create, edit and publish social media content:


  • Later, Victory Square Media Inc., Vancouver, Canada

  • Canva, Australia

We have concluded a data processing agreement with all of the above-mentioned companies in which these companies undertake to comply with the GDPR.

The data you provide is required to fulfill the contract or to carry out pre-contractual measures. Without this data, we cannot conclude and fulfill the contract with you. Data will only be transferred to third parties with your express permission. All data from a contractual relationship will be stored until the expiry of the tax retention period (7 years). Access data to systems used by the customer will be deleted immediately after the end of the contract.

The data processing is carried out on the basis of the legal provisions of Section 96 Paragraph 3 TKG and Art. 6 Paragraph 1 Letter a (consent) and/or Letter b (necessary for the performance of the contract) of the GDPR.


Data storage

For accounting purposes, we store the following customer data: name, address, telephone number, email address, VAT ID. If you have agreed to a direct debit order (SEPA direct debit mandate), we also store your bank details. This data is not passed on, with the exception of transmission to the processing banks/payment service providers for the purpose of direct debiting, and to our tax advisor for accounting purposes and to fulfill our tax obligations. The data is only stored within the EU.

The data you provide is required to fulfill the contract or to carry out pre-contractual measures. Without this data, we cannot conclude and fulfill the contract with you.

All data from a contractual relationship will be stored until the expiry of the tax retention period (7 years).

The above data is stored

•On encrypted local computer systems or portable computers secured by passwords and physical access protection. •In encrypted and password-protected cloud solutions from Google (Google Ireland Limited Gordon House, Barrow Street Dublin 4. Ireland).

The data is stored exclusively on servers within the EU.

We have concluded a data processing agreement with Google in which Google undertakes to comply with the standard contractual clauses defined by the EU Commission. You can find Google's privacy policy here .

The data processing is carried out on the basis of Art 6 Para 1 lit c (legal provisions) of the GDPR and Art 6 Para 1 lit b (necessary for the performance of the contract) of the GDPR.


Newsletter

You have the option of subscribing to our newsletter via our website. To do this, we need your email address and your declaration that you agree to receive the newsletter.

As soon as you have registered for the newsletter, we will send you a confirmation email with a link to confirm your registration. The data processing is therefore carried out on the basis of the legal provisions of Section 96 Paragraph 3 TKG and Article 6 Paragraph 1 Letter a (consent) of the GDPR.

You can unsubscribe from the newsletter at any time. Please send your cancellation to the following email address: office@valoriavienna.com or use the corresponding link at the end of the newsletter. We will then immediately delete your data in connection with the newsletter dispatch.

The newsletter is sent by "Brevo" (formerly "sendinblue"), a brand of Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany. Your email address, the date of your registration and the IP address used are stored on Brevo's servers. Brevo uses this information to send and evaluate the newsletter on our behalf. Brevo also uses the data to optimize its own service, but will under no circumstances pass it on or write to subscribers itself.

The newsletters sent contain small images (tracking pixels) or redirected links for the purpose of statistical evaluation, with the help of which we can determine whether you have read our newsletter and which type of device you used.

We have concluded a data processing agreement with Brevo in which Brevo undertakes to comply with the standard contractual clauses defined by the EU Commission. Brevo's data protection policy can be found here .


Comments

If you comment on a post on this website, your comment, your name, your email address and your IP address will be saved.

Before your comment is published, we check it for legal violations such as insults or racist or inflammatory statements. The stored data is necessary in order to be able to take action against such authors if necessary. The data is deleted as soon as the corresponding post is removed from the website.

Data processing is carried out on the basis of Art 6 Para 1 lit a (consent) of the GDPR.

Cookies

Our website uses so-called cookies. These are small text files that are stored on your device with the help of your browser. They do not cause any damage.

We use cookies to make our service user-friendly. Some cookies remain stored on your device until you delete them. They enable us to recognize your browser the next time you visit.

Some of these cookies are necessary for the operation of the website and store your consent to non-required cookies, the language you have chosen and are used for logging in. If you do not want the necessary cookies to be stored, you can set your browser so that it informs you about the setting of cookies and you only allow this in individual cases.

The legal basis for the use of required cookies is Art. 6 (1) (f) (legitimate interests) of the GDPR. Legitimate interests within the meaning of the GDPR are the proper and secure functioning of the website and the optimization of our offering.

In addition, other cookies that are not strictly necessary for the operation of the website may be stored only with your consent. Details can be found in the following sections.

Google Tag Manager

For the purpose of effectively configuring the analysis services described below, we use Google Tag Manager on this website, a service provided by Google Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.

The Tag Manager is primarily used to transmit data to the Google Analytics and Google Ads services described below. It itself only processes data to the extent technically necessary, in particular the IP address of the accessing computer. The data passed on to the configured services is not analyzed or stored.

We have concluded a data processing agreement with Google in which Google undertakes to comply with the standard contractual clauses defined by the EU Commission.

Data processing is carried out on the basis of Art 6 Para 1 lit a (consent) of the GDPR.

The Google Terms of Use and further information on data protection can be found under the following links: https://marketingplatform.google.com/about/analytics/tag-manager/use-policy/ and https://www.google.com/intl/de/policies/privacy/

Google Analytics

With your consent, our website uses functions of the web analysis service "Google Analytics" provided by Google Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. Cookies are used to enable analysis of the use of the website by your visitors. The information generated in this way is transferred to the provider's server and stored there.

If you have agreed to the use of Google Analytics, cookies will be placed in your browser that identify you when you visit our website again and allow us to distinguish visitors and analyze what you viewed during previous visits to our website. Because the privacy of our users is important to us, this data is pseudonymized, i.e. we cannot assign it to specific people and do not know who the respective visitor was.

We have concluded a data processing agreement with Google in which Google undertakes to comply with the standard contractual clauses defined by the EU Commission.

The data processing is carried out on the basis of the legal provisions of Section 96 Paragraph 3 TKG and Article 6 Paragraph 1 Letter a (consent) of the GDPR.

The Google Terms of Use and further information on data protection can be found under the following links: https://www.google.com/analytics/terms/de.html and http://www.google.com/intl/de/policies/privacy/

Facebook Pixel

With your consent, our website uses the functions of the "Facebook Pixel" from Facebook, a brand of Meta Platforms, Inc., Willow Road 1601 94025 Menlo Park, CA. With the help of this Java script, Facebook can record your activities on our site. This means that it can recognize, for example, if you have reached our site via a Facebook or Instagram ad and purchased the advertised product there. This enables us to measure the effectiveness of Facebook ads and further improve our offering.

For this purpose, several cookies are stored in your browser, which Facebook can use to compare information such as your IP address or user ID with your Facebook account. If you are logged into Facebook when you visit our website, your visit and your activities will be assigned directly to your Facebook account.

The data collected is anonymous to us, which means we cannot draw any conclusions about the people who have visited our website. We can also only access the evaluations in connection with Facebook advertising that we have placed. However, the data is stored and processed by Facebook, about which we will inform you according to our level of knowledge. Facebook can use this data in accordance with Facebook's privacy policy (see https://www.facebook.com/about/privacy/ ).

We have concluded a data processing agreement with Facebook in which Facebook undertakes to comply with the standard contractual clauses defined by the EU Commission.

Data processing is carried out on the basis of Art 6 Para 1 lit a (consent) of the GDPR.

Information about our Facebook fan page

We operate a Facebook page and an Instagram profile, which can be accessed at www.facebook.com/valoriavienna and www.instagram.com/valoriavienna respectively. This is a service provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

We would like to point out that the Facebook Insight function, which Facebook provides to us free of charge as an essential part of the user relationship, is used to send us anonymized statistical data about the users of these pages. This data is collected using cookies, each of which contains a unique user code that is active for two years and that Facebook stores on the hard drive of your computer or another data storage device of the fan page visitors. The user code, which can be linked to your Facebook login data, is collected and processed when you visit the fan pages. There is no way for the operator of a Facebook fan page to deactivate this function or prevent the aforementioned processing of the data.

Facebook provides more information about Facebook Insight here: https://de-de.facebook.com/help/pages/insights .

In this context, Facebook agrees to assume primary responsibility under the GDPR for processing the Insight data and to fulfill all obligations under the GDPR with regard to this data. In particular, Facebook guarantees to assume sole responsibility for personal data processed in this context and to fulfill all related disclosure obligations.

The data transmitted to us by Facebook in connection with the use of the fan page is anonymized, so that we cannot draw any conclusions about the identity of individual users. However, it is possible to evaluate demographic data about users (including trends in the areas of age, gender, relationship status and professional situation), information about the lifestyle and interests of users (including information about the purchases and online purchasing behavior of visitors to the page and about the categories of goods or services that interest them most) and geographical data in a statistical evaluation.

We only process this data for our own evaluation of the reach of our Facebook page and our Instagram page and do not pass it on to third parties. The legal basis for this processing is Art. 6 Para. 1 lit. f (legitimate interests) of the GDPR. The legitimate interest within the meaning of the GDPR is the identification of target groups that are interested in the content on our page.

Your rights

You generally have the right to information, correction, deletion, restriction, data portability, revocation and objection. Corresponding requests can be addressed to the email address office@valoriavienna.com .

If you believe that the processing of your data violates data protection law or that your data protection rights have been violated in any other way, you can complain to the supervisory authority. In Austria, this is the Data Protection Authority.

You can reach us at the following contact details:

VALORIA e.U.
 registered sole proprietorship

Owner: Victoria Forstner

Fashion retail

VAT number: ATU80710946

FN: 627205 k
FB Court: Vienna

Location: 1140 Vienna
Reinlgasse 36 / 1
Phone: +43 699 123 54 957
Email: office@valoriavienna.com