Go to homepage
€0.00
Menu

Data protection

1. Introduction

The protection of your personal data is important to us. In the following, we will inform you in detail about the collection, processing and use of your personal data when using our online shop in accordance with the General Data Protection Regulation (GDPR).

2. Controller

The controller within the meaning of the General Data Protection Regulation (GDPR) is

profil dekor GmbH & Co KG
Heidfeld 18
D-33142 Büren
Tel: 02951 / 93396-33
Fax: 02951 / 93396-96
eMail: info@profil-dekor.de
Internet: https://dekora-shop.de

Managing Director:
Michael Berg
Value added tax ID: DE 195 570 735
Commercial register: AG Paderborn HRA 2156

3. Data protection officer and reporting office according to the HinSchG

Data protection officer:
Dipl.-Coach Gerhard Heidemann
Telephone: 02941 2714408
Mobile phone: 0171 3398139
E-mail: datenschutz@topteam.de

External reporting centre in accordance with the law for better protection of whistleblowers (Whistleblower Protection Act - HinSchG)Contact person
Dipl.-Coach Gerhard Heidemann
Niemöllerallee 46
59555 Lippstadt
Tel. 0171-3398139
gh@topteam.de

4. Collection and processing of personal data

As part of the use of our online shop, we collect various personal data that is required for the use of the website and for the processing of orders. We collect the following data:

  1. Inventory data: e.g. name, address, email address, telephone number
  2. Order data: e.g. order history, payment data
  3. Usage data: e.g. IP address, time of access, browser type and version
  4. Payment data: Payment information such as bank details, credit card information (but only processed via third-party providers that are PCI-DSS compliant)

5. Purposes of data processing

  1. We process your personal data for the following purposes:
  2. Contract processing: To process and fulfil your orders, deliver the goods and communicate with you
  3. Customer support: To answer your enquiries and concerns
  4. Payment processing: To process payments and verify the identity of payments
  5. Advertising and marketing: If you have consented to this, to send you newsletters or advertising information
  6. Website analysis: To improve the functionality and user-friendliness of our online shop

6. Legal basis of the processing

Your personal data is processed on the basis of the following legal bases of the GDPR

  1. Art. 6 para. 1 lit. b GDPR: Processing for the fulfilment of a contract, e.g. for the processing and handling of your orders
  2. Art. 6 para. 1 lit. a GDPR: Consent, e.g. when registering for the newsletter
  3. Art. 6 para. 1 lit. f GDPR: Legitimate interests, e.g. to improve the user-friendliness of the online shop

7. Forwarding of data

We only pass on your personal data to third parties if this is permitted by law or if you have given your consent. Third parties to whom we may pass on your data are

  1. Payment service providers: For the processing of payments (e.g. PayPal, Stripe)
  2. Delivery services: For the delivery of ordered products (e.g. DHL, UPS)
  3. IT service providers: For the maintenance of our technical infrastructure
  4. Advertising partners: If you have consented to this, we may share your data with trusted partners for marketing purposes

8. Duration of storage

We only store your personal data for as long as is necessary for the fulfilment of the purposes or as long as there are statutory retention obligations. For example, retention obligations under tax and commercial law (e.g. for invoices) must be complied with for up to 10 years.

9. Rights of the data subject

You have the right to obtain information about the personal data stored by us at any time and to request its correction or deletion. You also have the right to

  1. Objection: You can object to the processing of your personal data if this is carried out on the basis of Art. 6 para. 1 lit. f GDPR.
  2. Data portability: You can request the transfer of your personal data in a structured, commonly used and machine-readable format.
  3. Withdrawal of consent: If the processing is based on your consent, you can revoke it at any time without giving reasons.
  4. Right to lodge a complaint with a supervisory authority: If you believe that the processing of your personal data violates the GDPR, you can lodge a complaint with the competent supervisory authority.

10. Security of the data

We take appropriate technical and organisational measures to protect your personal data from unauthorised access, loss or destruction. These include encrypting the website via SSL/TLS and regular security checks of our IT infrastructure.

11. Cookies and tracking technologies

Our online shop uses cookies and similar technologies (e.g. web beacons, pixels) to improve the user experience and enable certain functions. Cookies are small text files that are stored on your device. You can deactivate the storage of cookies in your browser, but this may limit the functionality of our website.

This website uses the following types of cookies, the scope and function of which are explained below:

Transient cookies (see a.)
Persistent cookies (see b.).

Transient cookies are automatically deleted when you close the browser. These include session cookies in particular. These store a so-called session ID, with which various requests from your browser can be assigned to the joint session. This allows your computer to be recognised when you return to our website. The session cookies are deleted when you log out or close the browser.

Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. You can delete cookies at any time in the security settings of your browser.

You can configure your browser settings according to your wishes and refuse to accept third-party cookies or all cookies. So-called "third party cookies" are cookies that are set by a third party and therefore not by the actual website you are currently visiting. We would like to point out that by deactivating cookies you may not be able to use all the functions of this website.

We use cookies to identify you for subsequent visits if you have an account with us. Otherwise you would have to log in again for each visit.

The Flash cookies used are not recorded by your browser, but by your Flash plug-in. We also use HTML5 storage objects, which are stored on your end device. These objects store the required data independently of the browser you use and do not have an automatic expiry date. If you do not want Flash cookies to be processed, you must install an appropriate add-on, e.g. "Better Privacy" for Mozilla Firefox(https://addons.mozilla.org/de/firefox/addon/betterprivacy/) or the Adobe Flash Killer cookie for Google Chrome. You can prevent the use of HTML5 storage objects by setting your browser to private mode. We also recommend that you regularly delete your cookies and browser history manually.

We use cookies for the following purposes:

  1. Necessary cookies: to ensure the basic functions of the website, such as the shopping basket.
  2. Analysis cookies: To analyse the use of our website (e.g. Google Analytics).
  3. Marketing cookies: To display personalised advertising (e.g. Google Ads).

12. Social media plugins

Plugins from social networks such as Facebook, Instagram and Twitter are integrated on our website. These plugins allow you to share content with others or follow us on social networks. When you visit our website, data is automatically transmitted to the operators of the social networks. We recommend that you read the privacy policies of the respective providers to find out more about their data processing practices.

13. Changes to the privacy policy

We reserve the right to amend this privacy policy from time to time. Changes will be published on this page so that you are always informed about what data we collect and how we use it. The latest version of the privacy policy is always available on our website.

14. Analysis tools

Use of Google Tag Manager, Google Analytics, Hotjar and Google Ads

We use Google Tag Manager, Google Analytics, Hotjar and Google Ads on our website. These tools help us to analyse the use of our website and offer personalised advertising. Personal data such as IP addresses and user behaviour are also collected in the process. Processing takes place on the basis of our legitimate interest in analysing website usage and displaying personalised advertising, unless you object.

Further information on data processing and your objection options can be found in the respective privacy policies of Google and Hotjar. You can deactivate the use of these tools at any time by changing your cookie settings or by objecting to personalised advertising.

Opt-out for Google Analytics, Google Ads and Hotjar

To deactivate the collection of data by Google Analytics, you can download and install the Google Analytics Opt-Out Browser Add-on. You can find more information here: Google Analytics Opt-Out Browser-Add-on. https://tools. google.com/dlpage/gaoptout

Google Ads: You can deactivate personalised advertising from Google Ads by accessing Google's advertising settings and selecting the appropriate option for deactivation: Google Ads Settings. https://adssettings. google.com/anonymous?hl=de

Hotjar: If you do not want Hotjar to track your usage on this website, you can opt-out here: Hotjar Opt-Out. https://www. hotjar.com/de/website-tracking/datenschutz/

Please note that if you deactivate cookies or opt out, the use of certain functions on our website may be restricted.

15. Newsletter and newsletter data

If you would like to receive the newsletter offered on the website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. No other data is collected, or only on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties.

The data entered in the newsletter registration form is processed exclusively on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can revoke your consent to the storage of the data, the e-mail address and its use for sending the newsletter at any time, for example via the "unsubscribe" link in the newsletter. The legality of the data processing operations that have already taken place remains unaffected by the cancellation.

The data you provide us with for the purpose of subscribing to the newsletter will be stored by us until you unsubscribe from the newsletter and deleted after you unsubscribe from the newsletter. Data stored by us for other purposes remains unaffected by this.

16. Final provisions

(1) If you wish to place an order in our webshop, it is necessary for the conclusion of the contract that you provide your personal data, which we require for the processing of your order. Mandatory information required for the processing of contracts is marked separately, further information is voluntary. We process the data you provide to fulfil your order. For this purpose, we may pass on your payment details to our bank. The legal basis for this is Art. 6 para. 1 sentence 1 lit. b GDPR. You can voluntarily create a customer account, which allows us to save your data for future purchases. When you create an account under "My account", the data you provide will be stored on a revocable basis. You can delete all other data, including your user account, at any time in the customer area

(2) Due to commercial and tax law requirements, we are obliged to store your address, payment and order data for a period of ten years. However, we restrict processing after two years, i.e. your data will only be used to comply with legal obligations.

(3) To prevent unauthorised access by third parties to your personal data, in particular financial data, the order process is encrypted using TLS technology.

Data processing for order processing

To process your order, we work together with the following service provider(s), who support us in whole or in part in the fulfilment of concluded contracts. Certain personal data is transmitted to these service providers in accordance with the following information. The personal data collected by us will be passed on to the transport company commissioned with the delivery as part of the contract processing, insofar as this is necessary for the delivery of the goods. We pass on your payment data to the commissioned credit institution within the scope of payment processing, insofar as this is necessary for payment processing. If payment service providers are used, we provide explicit information about this below. The legal basis for the transfer of data is Art. 6 para. 1 lit. b GDPR.

We work with external shipping partners to fulfil our contractual obligations to our customers. We pass on your name and delivery address to a shipping partner selected by us exclusively for the purpose of delivering goods in accordance with Art. 6 para. 1 lit. b GDPR.

Transfer of personal data to shipping service providers

- DHL If the goods are delivered by the transport service provider DHL (Deutsche Post AG, Charles-de-Gaulle-Straße 20, 53113 Bonn), we will pass on your e-mail address to DHL in accordance with Art. 6 para. 1 lit. a GDPR prior to delivery of the goods for the purpose of coordinating a delivery date or for delivery notification, provided that you have given your express consent to this during the ordering process. Otherwise, we will only pass on the name of the recipient and the delivery address to DHL for the purpose of delivery in accordance with Art. 6 para. 1 lit. b GDPR. The data will only be passed on if this is necessary for the delivery of goods. In this case, prior coordination of the delivery date with DHL or notification of delivery is not possible. Consent can be withdrawn at any time with effect for the future from the controller named above or from the transport service provider DHL.

Data protection provisions for the use of external payment service providers

(1) We offer several payment methods for the use of the online shop and use different payment service providers. Depending on which payment method you choose, different data will be transmitted to the respective payment service provider. The legal basis for the transfer is Art. 6 para. 1 sentence 1 lit. a GDPR. We list our payment service providers below.

PayPal

If you decide in favour of the PayPal payment method, your personal data will be transmitted to PayPal. The prerequisite for using PayPal is the opening of a PayPal account. When using or opening a PayPal account, your name, address, telephone number and e-mail address, among other things, must be transmitted to PayPal. The legal basis for the transmission of the data is Article 6(1)(a) GDPR (consent) and Article 6(1)(b) GDPR (processing for the fulfilment of a contract).

The operator of the PayPal payment service is:

PayPal (Europe) S.à r.l. et Cie, S.C.A.
22-24 Boulevard Royal
L-2449 Luxembourg
E-mail: impressum@paypal.com
By using the PayPal payment option, you consent to the transmission of personal data such as your name, address, telephone number and e-mail address to PayPal. Which other data is collected by PayPal can be found in PayPal's privacy policy. This can be found at: https: //www.paypal.com/de/webapps/mpp/ua/privacy-full

If you have any questions about this privacy policy or the processing of your personal data, you can contact us at any time. We are at your disposal.

[Date of last update: 17.12.2025]

This website uses cookies to ensure the best experience possible. More information...
Privacy policy | Imprint