The person responsible for data processing is: David Morin Wiedner Hauptstraße 66 1040 Vienna Austria

louismarie.wien@gmail.com

We are pleased with your interest in our online store. Protecting your privacy is very important to us. Below, we provide you with detailed information on how we handle your data. The processing of your data is based on the GDPR and § 96(3) of the Telecommunications Act.

1. Access Data and Hosting You can visit our websites without providing any personal information. Each time a website is accessed, the web server automatically saves a so-called server log file, which contains, for example, the name of the requested file, your IP address, date and time of access, data volume transferred, and the requesting provider (access data) and logs the access. This access data is evaluated exclusively for the purpose of ensuring smooth operation of the site as well as improving our offering. This serves to protect our legitimate interests in providing a correct display of our offering according to Art. 6(1)(f) GDPR. All access data is deleted no later than seven days after your visit to the site ends.

Hosting Services for hosting and displaying the website are partially provided by our service providers in the context of processing on our behalf. Unless otherwise explained in this privacy policy, all access data and data collected in designated forms on this website are processed on their servers. If you have any questions about our service providers and the basis of our collaboration with them, please contact the point of contact described in this privacy policy.

2. Data Processing for Contract Execution, Contact, and When Opening a Customer Account We collect personal data when you voluntarily provide it to us in the context of your order or when contacting us (e.g., via the contact form or email). Required fields are marked as such because we need the data for contract execution or to handle your inquiry, and you cannot place the order or submit your inquiry without providing them. The data collected is evident from the respective input forms. We use the data you provide for contract execution and handling your inquiries according to Art. 6(1)(b) GDPR.

If you have given your consent according to Art. 6(1)(a) GDPR by deciding to open a customer account, we use your data for the purpose of opening a customer account. Further information about the processing of your data, particularly the transfer to our service providers for the purpose of order, payment, and shipping processing, can be found in the subsequent sections of this privacy policy.

After the contract has been fully executed or your customer account deleted, your data will be restricted for further processing and deleted after the expiration of tax and commercial retention periods according to Art. 6(1)(c) GDPR, unless you have expressly consented to further use of your data according to Art. 6(1)(a) GDPR, or we reserve the right to further data usage as permitted by law, and we inform you about this in this declaration. Deletion of your customer account is possible at any time and can either be done by a message to the contact point described in this privacy policy or through a function provided in the customer account.

Data Processing for Payment Handling The unsubscription from the newsletter is possible at any time and can either be done by a message to the contact point described below or through a link provided in the newsletter.

In handling payments in our online store, we work with the following partners: technical service providers, credit institutions, payment service providers.

After unsubscribing, we delete your email address from the recipient list unless you have expressly consented to further use of your data according to Art. 6(1)(a) GDPR, or we reserve the right to further data usage as permitted by law and we inform you about this in this declaration.

3. Data Processing for Transaction Handling Depending on the selected payment method, we pass on the data necessary for the payment transaction to our technical service providers, who work for us as part of an order processing arrangement, or to the commissioned credit institutions or selected payment service providers, as far as this is necessary for processing the payment. This serves the fulfillment of the contract according to Art. 6(1)(b) GDPR. In some cases, the payment service providers themselves collect the data necessary for processing the payment, for example, on their own website or through a technical integration in the order process. The privacy policy of the respective payment service provider applies.

If you have questions about our payment processing partners and the basis of our cooperation with them, please contact the contact point described in this privacy policy.

3.1 Data Processing for Fraud Prevention and Optimization of Our Payment Processes If necessary, we provide our service providers with additional data, which they use together with the data necessary for payment processing as our processors for fraud prevention and the optimization of our payment processes (e.g., billing, handling of disputed payments, support of accounting). This serves the protection of our legitimate interests according to Art. 6(1)(f) GDPR in safeguarding against fraud or in efficient payment management.