Welcome to www.makarojewelry.com! The protection of your data and your privacy is our top priority. We, Makaro GmbH, Dr. Rennerstr. 11c, A-4470 Enns, process your data exclusively on the basis of the legal regulations (DSGVO, TKG 2003). In the following data protection information, we inform you about the most important aspects of data processing within the framework of our website.
The responsible party pursuant to Art. 4 (7) of the EU General Data Protection Regulation (DSGVO) is:
Our website uses SSL encryption to protect your data. You can recognize this encryption on every page by the small lock symbol in the browser line.
We use a third party provider to host and display our website. All collected data described below is stored and processed on the servers of this third-party provider. Their software enables us to present our products in an appealing way, to take your orders, to keep track of all orders and to process them. It is therefore the recipient of your data and acts on our behalf. It is based in the USA and is therefore obliged to comply with the Privacy Shield Agreement.
In the following, we will go into more detail about all data that is collected from you, the purpose of its collection, the legal basis for the collection, the duration of data storage and any other recipients of the data.
You have the option to subscribe to our newsletter via our website or our Facebook fan page. For this, we need your email address, your first name (or a synonym chosen by you) and your confirmation that you agree to receive our newsletter. If you want to receive our newsletter, this data is required, otherwise we cannot send out a newsletter to you. In order to receive more targeted information, you can also voluntarily provide additional information about areas of interest, last name, place of residence, Instagram username, birthday or zip code. We use a so-called double opt-in process: as soon as you have signed up for the newsletter, we therefore send you another confirmation email with a link to verify the registration, with which you can once again confirm your consent to the newsletter. You can unsubscribe from the newsletter at any time. At the bottom of each newsletter you will find a link ("unsubscribe" or "newsletter unsubscribe") where you can unsubscribe from the newsletter.
Your newsletter data is stored for us by an external service provider whose software enables us to keep track of all our newsletter customers and to design appealing emails for you. He is therefore the recipient of your data and acts on our behalf. It is based in the USA and is therefore obliged to comply with the Privacy Shield Agreement.
Until you revoke your consent to the newsletter (unsubscribe from the newsletter), your data will be stored for the purpose of sending newsletters (for direct marketing by email).
After unsubscribing from the newsletter, your data will be completely deleted for this purpose within 2 weeks.
The legal basis for the storage of data for our newsletter is your consent to this (Art 6 para 1 lit a (consent) of the DSGVO).
Alternatively to the complete deletion of your data via the newsletter, you can also send us a request to delete your data from our newsletter. This is possible at any time by mail to Makaro GmbH / Datenschutz, Stiftgasse 21, A-1070 Vienna or by email to email@example.com with the subject "Datenschutz". In this case, your data will be deleted by us immediately within 48 hours (working days Mon-Fri).
If you contact us by form on the website, by email or Facebook, a contact option must be provided by you so that we can answer your request. The data you provide will then be stored by us for 12 months for the purpose of processing the inquiry and in case of follow-up questions. The legal basis for this is our legitimate interest in being able to answer your inquiry and to answer any follow-up inquiries in a specific and customer-oriented manner, thus taking previous inquiries into account. Our emails are hosted by a third party provider located within the European Union and acting as a recipient of the data on our behalf. All emails are stored on their servers.
Another third party provider handles the storage of contact via email, our contact form and Facebook on our behalf. This enables us to keep track of all customer inquiries and to answer your questions on all channels as quickly as possible. This third-party provider is also a recipient of your data and acts on our behalf. It is based in the USA and is therefore obliged to comply with the Privacy Shield Agreement.
We would like to point out that for the purpose of a simpler shopping process and for the later processing of the contract, the browser type, the location and time of the various page views, the website from which you visited us and the IP data of the connection owner are stored in the context of cookies, as well as name, address, e-mail address and, if necessary, for the purpose of processing the contract, the bank details (IBAN, BIC) of the buyer. This serves the easier completion of your order process, even if you interrupt your order in between and want to complete the order at a later time. The legal basis for the data storage is thus our legitimate interest in making the completion on our website as quick and easy as possible for our customers. Some cookies remain stored on the hard drive of your terminal device until you delete them. They allow us to recognize your browser on your next visit. If you do not wish this, you can set your browser so that it informs you about the setting of cookies and you only allow this in individual cases. If you disable cookies, however, the functionality of our website may be significantly limited and longer loading times may occur.
In case of a started but aborted shopping process, the data entered by you including your selected goods will be stored by us for an additional 2 weeks. This serves the purpose of making it as easy as possible for you to call up your shopping cart again and to make it easier for you to purchase the goods you have selected. The legal basis for this storage is our legitimate interest to enable the easiest possible access to the completion of the purchase for our customers (Art 6 para 1 lit f (legitimate interest) of the DSGVO).
This storage can also be revoked by you at any time by sending an informal letter to Makaro GmbH / Datenschutz, Stiftgasse 21, A-1070 Vienna or by e-mail to firstname.lastname@example.org . In this case, your data will be deleted by us within 48 hours.
In the case of an order, the data provided by you is necessary for the fulfillment of the contract or for the implementation of pre-contractual measures. Without this data, we cannot process any orders via our online store and conclude the contract with you.
Data from concluded contracts may also be used to send direct marketing. The legal basis for this is our legitimate interest in informing our customers about other similar products that may be of interest to them after they have placed an order.
Data transfer to third parties takes place to the processing bank/payment service provider for the purpose of transferring the purchase price, to the transport company/shipping company commissioned by us for shipping and delivery of the goods, as well as to our tax advisor for the fulfillment of our tax obligations. If your order includes a MAKAROclub subscription, the data required for this purpose is additionally processed by a third-party provider who manages all subscriptions for us and thus triggers an order in our system every month. Some of the third-party providers in the area of payment services and the third-party provider for the subscription model have their headquarters or the location of their servers in the USA. All third-party providers are thus subject to either the guidelines of the GDPR or the Privacy Shield agreement.
In the event of a contract being concluded (an order), all data from the contractual relationship will be stored until the expiry of the retention period under tax law (7 years). The data name, address, e-mail address, purchased goods and date of purchase will also be stored until the expiry of the product liability (10 years). The legal basis for data processing after an order is therefore the need to fulfill the contract (Art 6 para 1 lit b DSGVO). In the case of the conclusion of a subscription model, this period begins with the termination of the subscription.
If you would like to return your order, it is necessary to provide your order number and email address. This will allow us to identify your order and create a label with your data. The returns portal is managed by a third-party provider, which has its headquarters or the location of its servers in the USA. The third party provider is therefore subject to the Privacy Shield agreement.
Web Analysis - Google Analytics
Google is based in the USA and is certified for the EU-US Privacy Shield. This means that Google is committed to complying with the EU's Data Protection Regulation (DSGVO) for the protection of personal data.
We use the so-called Facebook Pixel on our site. This is a service and product of Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA hereinafter referred to as "Facebook". This service is used to analyze, evaluate and track user behavior. In addition, the data and options available to us allow targeted advertisements to be placed via the Facebook and Instagram channels. If you call up a website of ours on which the Facebook pixel is set, this information is transmitted to Facebook and, if you are logged in to Facebook at the same time, is assigned to your user. This information is not directly accessible to us and we cannot draw any conclusions about respective users. However, Facebook is also obligated to act in accordance with the standards and applicable data protection regulations, since it is based in the U.S. and is bound by the U.S.-EU Privacy Shield Agreement(https://www.facebook.com/about/privacy). If you would like to prohibit the transmission and storage of data about yourself and your behavior on our website by Facebook, follow this link to adjust your settings: https://www.facebook.com/settings?tab=ads
We use social plugins from Facebook, Twitter, Google+ and Pinterest on our website. Your browser can establish a direct connection with the servers of Facebook, Google, Pinterest or Twitter and transmit data about your user behavior to them.
If you do not want Facebook to be able to associate the visit to our pages with your Facebook user account, please log out of your Facebook user account.
Facebook is based in the USA and is therefore bound by the EU-US Privacy Shield to ensure DSGVO-compliant data protection.
The Google Plus button is used on our websites. Google Plus is a product of Google Inc, 1600 Amphitheatre Parkway, Mountain View, California, 94043 USA, (hereinafter "Google" for short). When you use the button on our website, a connection is established to Google servers in the USA. In the process, both your IP address and the information about which of our websites you have visited will be passed on to the Google server. If you are also a Google Plus member and logged in to Google Plus while using the plugin, the collected information about the website visit will be linked to your Google Plus account. If you interact with other Google plugins, this information will also be transmitted to Google and stored(https://developers.google.com/+/plugins). All information about your rights and how you can protect your privacy can be found here: www.google.com/intl/de/+/policy/+1button.html.
Google is based in the USA and is therefore bound by the EU-US Privacy Shield to ensure data protection compliant with the GDPR.
Plugins from Twitter are used on our websites. A product and service of Twitter Inc, 795 Folsom Street, Suite 600, San Francisco, CA 94107, USA. You can share content from our website on Twitter. This information is then shared with Twitter and also, depending on your settings(http://twitter.com/account/settings), with your followers. You can find more information here: http://twitter.com/privacy
Twitter is based in the USA and is therefore bound by the EU-US Privacy Shield to ensure data protection compliant with the GDPR.
Plugins from Pinterest are used on our website. A product and service operated by Pinterest Inc, 635 High Street, Palo Alto, CA, 94301, USA (hereinafter "Pinterest" for short). If you use this plugin and want to share and/or save one of our contents on Pinterest, this information and also which of our websites you have visited will be transmitted to the servers of Pinterest in the USA and, in case you are registered and logged in to Pinterest, all information will be linked to your Pinterest user. You can find more information about this here: http://de.about.pinterest.com/privacy/
Pinterest is based in the USA and is therefore bound by the EU-US Privacy Shield to ensure data protection compliant with the GDPR.
We use Hotjar of the company Limited (Level 2, St Julian's Business Centre, 3, Elia Zammit Street, St Julian's STJ 1000, Malta) on this website to statistically analyze visitor data. Hotjar is a service that analyzes user behavior and feedback on websites through a combination of analytics and feedback tools. Hotjar-based websites have a tracking code integrated on their web pages. This tracking code contacts Hotjar's servers and sends a script to the computer or device you use to access the Hotjar-based website. The script collects certain data related to the user's interaction with the corresponding web page. This data is then sent to Hotjar's servers for processing.
If you do not want Hotjar to collect your data, you can activate the Hotjar Opt Out (https://www.hotjar.com/legal/compliance/opt-out). There you have the possibility to deactivate or reactivate the collection of data by Hotjar by simply clicking on the red Hotjar deactivate button. Note: Deleting cookies, using the incognito/private mode of your browser, or using a different browser will result in data being collected again.
In principle, you are entitled to the rights of access to all personal data available to us, correction of the data, deletion, restriction, data portability and objection.
If your data is processed on the legal basis of consent, you have the right to revoke this consent at any time. This does not affect the lawfulness of the processing that took place until the revocation.
If you believe that the processing of your data violates data protection law or your data protection rights have otherwise been violated in any way, you are welcome to contact us(email@example.com) or complain to the supervisory authority. In Austria, this is the data protection authority (Österreichische Datenschutzbehörde, Wickenburggasse 8, A-1080 Vienna).
You can reach us by mail or email:
Tel: +43 (0)680 2363832 (WhatsApp only)