data protection
Privacy Website
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration. The following notes provide a simple overview of what happens to your personal data and for what purposes when you visit our website. Personal data within the meaning of the General Data Protection Regulation is any information that relates to an identified or identifiable natural person (hereinafter "data subject"). This includes, for example, your name, your address or your e-mail address.
We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. A complete protection of the data against access by third parties is not possible.
1. Who is responsible for data processing
The responsible body for data processing on this website is:
Britta Hugenroth,
Björn Peters
Latupo GmbH
Stahltwiete 21
22761 Hamburg
Phone: +49 40 432 824 39 10
Email: mail@latupo.com
Responsible body is the natural or legal person who, alone or together with others, decides on the purposes and means of processing personal data (e.g. names, e-mail addresses, etc.).
Legally required data protection officer
If you have any questions about data protection or want to assert your rights, please contact our data protection officer at the following email address: datenschutz@latupo.com
2. General information on data processing
If you only use our website for informational purposes, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you want to view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure stability and security. The legal basis for this is Art. 6 Para. 1 f GDPR:
Browser type and browser version used:
- operating system
- referrer URL
- host name of the accessing computer
- time of the server request
- IP address
The Data is stored for the purposes mentioned, including the IP address, for a period of 7 days and then deleted. If there are statutory retention requirements, processing will be restricted accordingly. This data is not stored together with other personal data of the user.
3. Cookies: Use of cookies
Our website uses so-called cookies. Cookies are small text files that are stored on your hard drive in the browser you are using and through which certain information flows to the place that sets the cookie. Cookies do not damage your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective and secure.
We also use cookies to identify you for subsequent visits if you have an account with us. Otherwise you would have to log in again for each visit.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted after your visit. Other cookies remain stored on your end device until you delete them (persistent cookies).Cookies that are required to carry out the electronic communication process or to provide certain functions you want are stored on the basis of Article 6 Paragraph 1 lit. f GDPR. The website operator has a legitimate interest in the storage of cookies for the technically error-free and optimized provision of its services. Insofar as other cookies (e.g. cookies for analyzing your surfing behaviour) are stored, these are treated separately in this data protection declaration.
Reject cookies
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when the browser is closed. If cookies are deactivated, the functionality of this website may be restricted.
4. Contact
If you contact us by e-mail or via our contact form, the data you provide (e.g. your e-mail address, possibly your name and telephone number) will be stored by us for the purpose of processing your request . This information is provided expressly on a voluntary basis and with your consent. Insofar as this concerns information on communication channels (e.g. e-mail address, telephone number), you also agree that we may also contact you via this communication channel in order to answer your request. We delete the data arising in this connection when the storage is no longer necessary to fulfill the purpose. If statutory retention requirements prevent deletion, we restrict the processing. The legal basis for the processing of your personal data in the context of entering into a contract is your consent, Article 6 (1) sentence 1 lit. a GDPR. Of course, you have the option at any time to revoke your consent to us in this regard for the future. To do this, simply contact datenschutz@latupo.com.
5. Customer Account
You have the option of registering with us and creating a customer account. To register, we need your name, address, e-mail address and a password of your choice. In addition, you have the option of voluntarily providing us with further information, such as your telephone number. Once you have registered, you will receive personal, password-protected access and can view and manage the data you have stored there. In addition, an order history is created for your customer account so that you can track your orders. Registration is not a prerequisite for placing an order, but may be a prerequisite for using special services. We store your personal data for as long as is necessary to provide the contractually agreed service. The personal data stored in your customer account is available to you for the duration of the contract and will be stored by us for this duration. This data will be deleted if you ask us to delete it and the purpose of storage or statutory retention requirements do not prevent deletion, or if you or we terminate the user contract. The legal basis for the processing of your personal data in connection with your customer account is Article 6 (1) (b) GDPR. With regard to the personal data you voluntarily provide, the legal basis is Article 6(1)(a) GDPR.
6.Order
We offer you various options for placing an order with us: You can order both as a guest and as a registered customer via a customer account. You also have the option of placing orders by e-mail. As part of your order, we collect the data required to fulfill the contract. The processing includes inventory data, communication data, contract data and payment data. The legal basis is the conclusion and execution of a contract in accordance with Article 6 Paragraph 1 lit. b and c GDPR. The personal data is stored for the duration of the contract and in accordance with legal obligations. We use various payment service providers for payment processing, which are always identified and receive your entries directly and are therefore recipients of your personal data collected in connection with the payment process. The legal basis for the involvement of payment service providers is the execution of the contract according to Art. 6 Para. 1 b DSGVO. If you would like to order via our web shop, it is necessary for the conclusion of the contract that you go through our online ordering process. The mandatory information required for the execution of the contract is marked separately, further information is voluntary. Your payment data will be passed on to the payment service provider you have selected and our house bank to process the payment transaction. The legal basis for this is Article 6 (1) sentence 1 lit. b GDPR. As part of a contract, we can use your email address to send you information about similar goods. Of course, you can object to the use at any time without incurring any costs other than the transmission costs according to the basic tariffs.
In order to be able to offer you Klarna's payment options, we will transmit personal data, such as contact data and order data, to Klarna. In this way, Klarna can assess whether you can use the payment options offered via Klarna and adapt the payment options to your needs. You can find general information about Klarna here. Your personal information will be treated by Klarna in accordance with the applicable data protection regulations and in accordance with the information in Klarna's data protection regulations.
Due to commercial and tax law requirements, we are obliged to store commercial and business letters as well as accounting documents for a period of six or ten years.
7. Web Analysis
For the purposes of analyzing and optimizing our websites, we use various services that are presented below. For example, we can analyze how many users visit our site, which information is most in demand or how users find the offer. Among other things, we collect data about the website from which a person concerned came to a website (so-called referrer), which subpages of the website were accessed or how often and for how long a subpage was viewed. This helps us to design and improve our offers in a user-friendly manner. The data collected is not used to personally identify individual users. Anonymous or at most pseudonymous data is collected. The legal basis for this is Art. 6 Para. 1 lit.f GDPR.
7.1. Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Inc, (1600 Amphitheater Parkway Mountain View, CA 94043, USA) Use includes the Universal Analytics operating mode. This makes it possible to assign data, sessions and interactions across multiple devices to a pseudonymous user ID and thus to analyze a user's activities across devices as part of a pseudonymous user profile.
Google Analytics uses cookies that enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, by activating IP anonymization on this website, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there. For the exceptional cases in which personal data is transferred to the USA, Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. Our legitimate interest in data processing also lies in these purposes. The legal basis for the use of Google Analytics is Section 15 (3) TMG and Article 6 (1) f GDPR.
The data sent by us and linked to cookies and/or user IDs (e.g. user ID) will be automatically deleted after 14 months. Data that has reached the end of its retention period is automatically deleted once a month. You can find more information on Google's terms of use and data protection at https://www.google.com/analytics/terms/de.html or at https://policies.google.com/ ?hl=de
You can prevent the storage of Google Analytics cookies by setting your browser software accordingly or delete these cookies at any time. You can also prevent the data generated by the cookie and related to your use of the website (including your IP address) being sent to Google and the processing of this data by Google by using the https://tools. google.com/dlpage/gaoptout?hl=de and install it. Opt-out cookies prevent future collection of your data when you visit this website. To prevent Universal Analytics from collecting data across different devices, you must opt out on all systems used. If you click here, the opt-out cookie will be set: Disable Google Analytics
7.2 Google Tag Manager
For reasons of transparency, we would like to point out that we use the Google Tag Manager from the provider Google Ireland Limited (registration number: 368047), Gordon House, Barrow Street, Dublin 4, Ireland. The Google Tag Manager itself does not collect any personal data. The Google Tag Manager makes it easier for us to integrate and manage our tags. Tags are small pieces of code used, among other things, to measure traffic and visitor behavior, understand the impact of online advertising and social channels, set up remarketing and audience targeting, and test and optimize websites. We use the Tag Manager for the Google Analytics service. If you have made a deactivation, this deactivation will be taken into account by Google Tag Manager. For more information about the Google Tag Manager see: https://www.google.com/intl/de/tagmanager/use-policy.html.
Google is EU-US Privacy Shield certified. You can view the certificate at https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI.
8.Advertisement
We use cookies for marketing purposes to address our users with interest-based advertising. We also use cookies to limit the probability of an advertisement being displayed and to measure the effectiveness of our advertising measures. This information may also be shared with third parties such as e.g. ad networks. The legal basis for this is Article 6 (1) (f) GDPR. There is a legitimate interest in direct marketing for the purposes pursued with data processing. Customers and users of our website are affected by this data processing.
You have the right to object at any time to the processing of your data for the purpose of such advertising. In the following, we present you with opt-out options for the respective services. Alternatively, you can prevent the setting of cookies in your browser settings.
8.1. API Google Ajax Search API
This website uses Google AJAX Search API using Java Script code. If you have activated Java Script in your browser and have not installed a Java Script blocker, your browser may transmit personal data, such as your IP address, to a Google server in the USA when using a search field or reloading fonts transfer. The data protection regulations of Google (https://www.google.com/intl/de_de/policies/privacy) apply. Google Ajax Search API is used in the interest of a uniform and appealing presentation of our online offers and improvement of the user experience. This represents a legitimate interest within the meaning of Article 6 (1) (f) GDPR. Google is certified under the Privacy Shield Agreement and thus offers a guarantee of compliance with European data protection law.
8.2. Google “double click”
We may include third-party ads based on Google's "DoubleClick" marketing service. DoubleClick uses cookies that enable Google and its partner websites to serve ads based on users' visits to this website and other websites on the Internet. Due to the marketing tools used, your browser automatically establishes a direct connection to the Google server in the USA. Google is certified under the Privacy Shield Agreement and thus offers a guarantee of compliance with European data protection law. Google DoubleClick is used for the economic operation of the website and to be able to show you offers that are tailored to your interests. The legal basis for the processing of your data is Art. 6 Para. 1 lit. f GDPR. If you do not wish to receive user-based advertising, you can opt out of being served ads using Google's Ads Preferences. You can read more about what types of cookies and how Google uses them in the Google privacy policy and under "Types of cookies used by Google". Further information on DoubleClick by Google is available at https://www.google.de/doubleclick.
8.3. Google Web Fonts
This site uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into your browser cache in order to display text and fonts correctly.
For this purpose, the browser you are using must connect to the Google servers. This gives Google knowledge that our website was accessed via your IP address. Google Web Fonts are used in the interest of a uniform and appealing presentation of our online offering. This represents a legitimate interest within the meaning of Article 6 (1) (f) GDPR.
If your browser does not support web fonts, a standard font will be used by your computer
You can find more information about Google Web Fonts at https://developers.google.com/fonts/faq and in Google's privacy policy: https://www.google.com /policies/privacy.
8.4. Google Maps
This site uses the Google Maps map service via an API. The provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.
To use the functions of Google Maps, it is necessary to save your IP address. This information is usually transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.
Google Maps is used in the interest of an attractive presentation of our online offers and to make it easier to find the places we have indicated on the website. This represents a legitimate interest within the meaning of Article 6 (1) (f) GDPR.
More information on handling user data can be found in Google's data protection declaration: https://www.google.de/intl/de/policies/privacy/.
8.5 Facebook Connect
We offer you the possibility to register and login via your Facebook account. The provider of the "Facebook Connect" service is Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland ("Facebook"). If you register through Facebook, Facebook will ask for your consent to share certain information in your Facebook account with us. This may include the following data:
- Facebook name
- Facebook profile and cover photo
- Facebook cover photo
- Email address stored on Facebook
- Facebook ID
- Facebook friend lists
- Facebook Likes
- date of birth
- Sex
- country
- language
- Location
- Link to your Facebook profile
- time zone
This data is collected by Facebook and transmitted to us in compliance with the provisions of Facebook's data policy (https://de-de.facebook.com/about/privacy/). You can control the information we receive from Facebook through the privacy settings in your Facebook account.
This data is used to set up, provide and personalize your account.
If you register with us via Facebook, your account will automatically be connected to your Facebook account and information about your activities on our websites may be shared on Facebook and published in your timeline and news display for friends. The legal basis for the data processing operations mentioned is. 6 Paragraph 1 lit. a GDPR, i.e. your consent. Facebook is EU-US Privacy Shield certified. You can view the certificate at https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC. 8.6. Bugsnag We use Bugsnag from Bugsnac Inc., 939 Harrison St, San Francisco, CA 94107, USA ("Bugsnag"). This is an error analysis tool that is used to analyse, evaluate and categorize malfunctions that are caused, for example, by programming errors.As part of the monitoring of functionality, system stability and identification of code errors, it is possible that we automatically transmit the following information to Bugsnag when software errors occur: The legal basis for the transmission of this data and our analysis is Article 6 Paragraph 1 S. 1 lit. f GDPR. Our legitimate interest lies in improving the accessibility and technical stability of our website. An evaluation for advertising purposes does not take place. If you do not want the cookie to be executed, you can prevent it in your browser settings or delete the cookie. Alternatively, you can object to the processing by clicking on the following link: Cookie settings< /p> For more information on how Bugsnag processes data and how it works, see Bugsnag is EU-US Privacy Shield certified. You can view the certificate at https://www.privacyshield.gov/participant?id=a2zt0000000TSeVAAW. 8.7. Lucky Orange We use Lucky Orange from Lucky Orange LLC, 8220 Travis Street Suite210, Overland Park, KS 66204, USA. This is an analysis tool to improve user-friendliness and user satisfaction. For this purpose, mouse clicks, mouse movements and scrolling movements, as well as keystrokes are saved. We transmit the following information to Lucky Orange: The legal basis for using Lucky Orange is your consent, Art. 6 (1) sentence 1 lit. a GDPR. If you do not want the cookie to be executed, you can prevent this within your browser settings or revoke your consent within the cookie management by clicking on the following link: For more information about Lucky Orange's data processing and how it works, visit http://www.luckyorange.com/privacy.php. Lucky Orange is EU-US Privacy Shield certified. You can find the certificate at https://www.privacyshield.gov/participant?id=a2zt0000000TSvDAAW&status=Active 8.8. Facebook Custom Audience We use the Custom Audiences service from Facebook Inc. (1601 S. California Avenue, Palo Alto, CA 94304, USA) as part of usage-based online advertising. For this purpose, we define target groups of users in the Facebook ads manager based on certain characteristics, which are subsequently displayed within the Facebook network. The users are selected by Facebook based on the profile information they provide and other data provided through the use of Facebook. If a user clicks on an advertisement and then gets to our website, Facebook receives information via the Facebook pixel integrated on our website that the user has clicked on the advertising banner. Basically, a non-reversible and non-personal checksum (hash value) is generated from your usage data, which is transmitted to Facebook for analysis and marketing purposes. A Facebook cookie is set. This collects information about your activities on our website (e.g.surfing behaviour, subpages visited, etc.). Your IP address will also be stored and used for the geographic control of advertising. We do not use Facebook Custom Audiences via the customer list or the "extended matching" function. Further information about the purpose and scope of the data collection and the further processing and use of the data by Facebook as well as your setting options for protecting your privacy can be found in Facebook's data protection guidelines. You can make settings for which advertisements are displayed to you on Facebook under this link and in the Facebook account settings. The transmission of data to the USA is permitted according to Art. 45 GDPR, since Facebook is Privacy Shield-certified and thus according to Commission Implementing Decision (EU) 2016/1250 (https://eur-lex. europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32016D1250&from=DE) there is an adequate level of data protection. The certification can be viewed at https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active. You can find more information about the Custom Audiences service from Facebook at: Further information on data processing and storage duration can be obtained from the provider or at https://de-de.facebook.com/about/privacy/. The "Facebook Custom Audiences" function can be deactivated for logged-in users at https://www.facebook.com/settings/?tab=ads#_. The legal basis for the use of Custom Audiences is your consent, Art. 6 (1) sentence 1 lit. a GDPR. You can revoke your consent by clicking on the following link: A persistent opt-out cookie will be set to prevent future collection of your data when you visit this website. You can also prevent the storage of cookies by setting your browser software accordingly. However, we would like to point out that in this case you may not be able to use all the functions of our website to their full extent. You can find additional options for disabling third-party cookies at www.networkadvertising.org/managing/opt_out.asp or on the Digital Advertising Alliance opt-out platform at http://optout.aboutads. info/?c=2&lang=en. 9. Your rights in relation to the processing of your personal data You have the following rights towards us with regard to your personal data: 9.1. General Rights You have the right to information, correction, deletion, restriction of processing, objection to processing and data portability. If processing is based on your consent, you have the right to revoke this with effect for the future. 9.2. Right to object You can object to the use of your data for advertising using electronic mail at any time without incurring any costs other than the transmission costs according to the basic tariffs. Rights in data processing on the basis of a legitimate interest According to Art. 21 Para 6 Paragraph 1 e GDPR (data processing in the public interest) or based on Article 6 Paragraph 1 f GDPR (data processing to protect a legitimate interest), this also applies to profiling based on this provision.In the event of your objection, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims 9.3. Direct Mail Rights If we process your personal data in order to operate direct advertising, you have the right, in accordance with Article 21 (2) GDPR, to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling to the extent related to such direct marketing. If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes 9.4. Right to lodge a complaint with a supervisory authority You also have a right of appeal to the competent supervisory authority if you believe that the processing of your personal data violates data protection regulations. The competent supervisory authority for data protection issues is the state data protection officer of the federal state in which our company is based. A list of data protection officers and their contact details can be found at the following link: If you have any questions about data protection and the processing of your personal data, you can also contact our data protection officer. This is also at your disposal for applications, requests for information, suggestions or complaints. 9.5. Processing of data (customer and contract data) We collect, process and use personal data only insofar as they are necessary for the establishment, content or change of the legal relationship (inventory data). This is based on Article 6 Paragraph 1 Letter b GDPR, which allows the processing of data to fulfill a contract or pre-contractual measures. We collect, process and use personal data about the use of our website (usage data) only to the extent necessary to enable the user to use the service or to bill the user. The collected customer data will be deleted after completion of the order or termination of the business relationship. Statutory retention periods remain unaffected. 10. Sharing of personal data A transfer of your data to third parties does not take place, unless we are legally obliged to do so, or the data transfer is necessary for the execution of the contractual relationship or you have previously expressly consented to the transfer of your data. The basis for data processing is Art. 6 Paragraph 1 lit. b GDPR, which allows the processing of data to fulfill a contract or pre-contractual measures. We work with service providers who take on technical and content-related tasks when providing the website. This includes services such as hosting and maintenance of our website. Insofar as external service providers come into contact with your personal data, we have taken legal, technical and organizational measures and carried out regular checks to ensure that they comply with the provisions of the data protection laws. If you have any further questions about the individual recipients, please contact us using the contact details given in Section 1. 11.Data Security We have taken extensive technical and operational precautions to protect your data from accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our security procedures are regularly reviewed and adapted to technological progress. 12. Newsletter You can subscribe to various newsletters on some of our websites, with which we will inform you about the activities of our company, current information about our services, special offers, promotions, events and competitions. The content of the individual newsletter is briefly described during registration. The legal basis for sending the respective newsletter is your consent in accordance with Article 6 Paragraph 1 Clause 1 Letter a GDPR in conjunction with Section 7 Paragraph 2 No. 3 UWG. If we receive your e-mail address in connection with the sale of goods or services and you have not objected to this, we reserve the right to regularly send you offers for similar products, such as the already purchased ones from our range by e-mail. This serves to protect our overriding legitimate interests in advertising to our customers within the framework of a balancing of interests. We use the so-called double opt-in procedure to register for our newsletters. This means that after you have registered, we will send you an e-mail to the e-mail address provided, in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration, your information will be automatically deleted after 3 days. Mandatory information for sending the newsletter is your e-mail address. Providing further data is voluntary: This data is used to be able to address you more personally. After your confirmation, we will save your e-mail address for the purpose of sending the newsletter and until further notice. We also store your current IP address at the time of registration, the time of registration and the confirmation for up to three years after registration (statute of limitations). The purpose of this procedure is to be able to prove your registration in case of doubt and, if necessary, to be able to clarify any misuse of your personal data. The legal basis for logging the registration is our legitimate interest pursuant to Article 6 Paragraph 1 Clause 1 Letter f GDPR in proof of a previously given consent, see also Article 7 Paragraph 1 GDPR. You can revoke your consent to the sending of the newsletter at any time and unsubscribe from the newsletter. You can declare your revocation by clicking on the link provided in every newsletter e-mail or by sending an e-mail to newsletter@sportplus.de. 12.1. Tracking We would like to point out that we evaluate your user behavior when sending the newsletter in order to determine whether and when the newsletter was opened. For this evaluation, the e-mails sent contain so-called web beacons or tracking pixels, which are stored on our server and are loaded when the newsletter is opened. Technical information such as browser type, time of opening and IP address are transmitted. For the evaluations, we link the data mentioned and the web beacons with your e-mail address and an individual ID via the third-party provider Mailchimp. The data is processed pseudonymously, so the IDs are not directly linked to your other personal data. Nevertheless, the individual newsletter recipient can theoretically be identified based on the technical data. The legal basis for this data processing is your consent, Art. 6 Para. 1 S. 1 lit. a GDPR.You can revoke your consent to tracking at any time with effect for the future by clicking on the separate link provided in every e-mail Such tracking is also not possible if you have deactivated the display of images in your e-mail program by default. In this case, the newsletter will not be displayed to you in full and you may not be able to use all functions. If you display the images manually, the tracking mentioned above takes place. The information from the tracking will be stored for as long as you have subscribed to the newsletter. After you unsubscribe, the data will be anonymized and used for purely statistical purposes. The data you have stored with us for the purpose of subscribing to the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted after you have canceled the newsletter. Data stored by us for other purposes remain unaffected. SSL or TLS encryption For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses an SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties. As of June 2020
https://de-de.facebook.com/business/help/341425252616329?id=2469097953376494
https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.