Privacy policy
A. Information about the processing of personal data
We hereby inform you about the collection and processing of your data in accordance with Art.13 of the GDPR.
Version: 2.2
Date: 23.05.2025
B. Contact details
Responsible Authority
Horze International GmbH
Flemingstraße 22
36041 Fulda
Local Court of Fulda, Commercial Register No. HRB 7995
Managing Directors: Viola Rebmann, Niko Neuhof
E-Mail: customerservice@horze.com
Website: https://www.horze.eu
Data Protection Officer
Mag. Jur. Djoko Lukic (data protection office Hamburg )
Suhrenkamp 59
22335 Hamburg
E- Mail:horze@datenschutzbuero.hamburg
Website: https://datenschutzbuero.hamburg
Supervisory Authority for Data Protection
The Hessian Commissioner for Data Protection and Freedom of Information
P.O. BOX 3163
65021 Wiesbaden
Tel.: +49 (0)611 1408-0
E-Mail: poststelle@datenschutz.hessen.de
Website: https://datenschutz.hessen.de/
C. General Explanations
Personal Data
"Personal data" pursuant to Art. 4 No. 1 of the GDPR means any information relating to an identified or identifiable natural person (hereinafter referred to as the “data subject”). A natural person is considered identifiable if they can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more specific characteristics that express the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
(Data) Processing
“Processing” pursuant to Art. 4 No. 2 of the GDPR means any operation or set of operations performed on personal data, whether or not by automated means. This includes the collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction of personal data.
Responsible Body
The “responsible body” pursuant to Art. 4 No. 7 of the GDPR is a natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of processing personal data.
Consent
“Consent” pursuant to Art. 4 No. 11 of the GDPR means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signify agreement to the processing of personal data relating to them.
You can withdraw any consents you have given via the consent banner by clicking on the “Cookie Settings” link located at the bottom right of the website.
Data Deletion and Retention Periods
Your data will be deleted as soon as it is no longer necessary for the purposes for which it was collected or processed. Excluded from this are data that must be retained for commercial or tax-related reasons.
Business letters includes all written documents or emails related to a commercial transaction, such as offers, order confirmations, or contracts. These documents must generally be retained for six years, excluding the year in which the business correspondence was created. The retention requirement also applies to other electronic documents.
Accounting-relevant data includes all information necessary for maintaining books and records, such as invoices, cash books, bank documents, or payroll records. These data must generally be retained for ten years.
Data transfers to Recipients Outside the EU
Data transfers are always carried out on a legal basis. Transfers of data to recipients located outside the European Union are only conducted if:
(1) An adequacy decision has been established with the destination country of the data transfer,
(2) Or the data processing is carried out based on standard contractual clauses,
(3) Or the data subjects have given their consent to the data transfer.
D. Your Rights
You are entitled to exercise the rights listed below.
1. Right of Access, Art. 15 GDPR
In accordance with Article 15 of the General Data Protection Regulation (GDPR), you as the data subject have the right to obtain information about the processing of your personal data.
Unless the effort required is disproportionate, we will provide you with information about your stored personal data free of charge and supply you with a copy of this data. The information must include the following details:
a) The purposes of processing;
b) The categories of personal data being processed;
c) The recipients or categories of recipients to whom the personal data has been or will be disclosed, particularly in the case of recipients in third countries or international organizations;
d) Where possible, the planned period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;
e) The existence of the right to rectification or erasure of personal data concerning you, or restriction of processing by the controller, or the right to object to such processing;
f) The existence of a right to lodge a complaint with a supervisory authority;
g) Where the personal data has not been collected from the data subject, any available information about the source of the data;
h) The existence of automated decision-making, including profiling, at least in such cases meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.
The right of access under Art. 15 GDPR applies only to the extent it does not adversely affect the rights and freedoms of other data subjects, in accordance with Article 15(4) GDPR.
2. Right to Data Portability, Art. 20 GDPR
If data processing is carried out based on consent or a contract and by automated means, you have the right to receive your data in a structured, commonly used, and machine-readable format.
3. Right to Rectification, Art. 16 GDPR
You have the right to request the correction of inaccurate data or the completion of incomplete data concerning you.
4. Right to Erasure, Art. 17 GDPR
Your personal data must be deleted under the following conditions:
a) The personal data are no longer necessary for the purposes for which they were collected or otherwise processed.
b) You withdraw your consent on which the processing was based in accordance with Article 6(1)(a) GDPR, and there is no other legal basis for the processing.
c) You object to the processing pursuant to Article 21(1) GDPR, and there are no overriding legitimate grounds for the processing.
d) The personal data have been unlawfully processed.
e) The erasure of the personal data is required to comply with a legal obligation under Union law or the law of the Member States to which the controller is subject.
f) The personal data were collected in relation to the offer of information society services to children pursuant to Article 8(1) GDPR.
Your right to erasure does not apply if the processing is necessary:
a) For exercising the right to freedom of expression and information;
b) For compliance with a legal obligation that requires processing, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
c) For reasons of public interest in the area of public health in accordance with Article 9(2)(h) and (i) and Article 9(3) GDPR;
d) For archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes pursuant to Article 89(1) GDPR, insofar as the right to erasure is likely to render impossible or seriously impair the achievement of the objectives of that processing; or
e) For the establishment, exercise, or defense of legal claims.
5. Right to Restriction, Art. 18 GDPR
You have the right to request the restriction of processing if one of the following conditions applies:
a) The accuracy of your personal data is contested by you, for a period enabling the controller to verify the accuracy of the personal data,
b) The processing of your data is unlawful, and you oppose the erasure of the data and request the restriction of their use instead;
c) SieYou require the data for the establishment, exercise, or defense of legal claims.
d) You have objected to the processing pursuant to Article 21(1) GDPR, pending verification of whether our legitimate grounds override yours.
If processing has been restricted, such personal data apart from storage may only be processed with the data subject’s consent, or for the establishment, exercise, or defense of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of important public interest of the Union or of a Member State.
If you have obtained restriction of processing, you will be informed by us before the restriction is lifted.
6. Right to Object, Art. 21 GDPR
Als As a data subject, you have the right to object to the processing of your personal data in accordance with Article 21 of the General Data Protection Regulation (GDPR). You may exercise this right in the following cases:
a) If the processing is based on our legitimate interests and your interests, fundamental rights, and freedoms override those legitimate interests.
b) If personal data are processed for direct marketing purposes.
c) If you object, we may only continue to process your personal data if we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing serves the establishment, exercise, or defense of legal claims.
d) You have the right to object to the processing of your personal data at any time and without providing reasons. The objection may be made in writing or electronically and should be addressed to our contact details provided above (see section B.1).
7. Withdrawal of Consent, Art. 7(3) GDPR
You have the right to withdraw any consent you have given to us at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. The withdrawal may be made in writing or electronically and should be addressed to our contact details provided above (see section B.1).
Newsletter
If you receive newsletters from us, you can withdraw your consent by using the unsubscribe link provided in the newsletter or by sending a statement to our contact address.
Cookie or Consent Banner
You can withdraw any consents you have given via the consent banner by clicking on the “Privacy Settings” link located in the footer section of the website.
8. Right to Lodge a Complaint, Art. 77 GDPR
You also have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your personal data by us. Employees are not required to follow internal reporting channels when contacting the supervisory authority.
E. Contract Fulfillment
1. Fulfillment of Contract and Delivery
The personal data you provide (master data, contact details, payment information) are stored and processed for the purpose of fulfilling the contract. The information necessary for processing your purchase (order confirmation, invoice, etc.) will be sent to you by email.
To process orders, we handle the following data from you: your name, if applicable your date of birth, your contact details (telephone number, email address), and your delivery address. The address data will be forwarded to the transport company commissioned with the delivery.
For freight deliveries, we forward your telephone number to the commissioned shipping company for the purpose of scheduling delivery appointments. If the ordered goods are delivered directly to you by manufacturers or wholesalers, we transmit your address data to them for the purpose of fulfilling the contract.
In the event of payment defaults, we transmit your data to lawyers and debt collection service providers for the assertion of legal claims.
Data processing is carried out to protect our contractual rights and to fulfill our contractual obligations in accordance with Article 6(1)(b) GDPR.
For tax reasons, data related to order processing must be retained for 10 years in accordance with Section 147 of the German Fiscal Code (AO).
Further information about data processing by the commissioned transport companies can be found at the following links:
DHL Paket GmbH, Sträßchensweg 10, 53113
Bonn(https://www.dhl.de/de/toolbar/footer/datenschutz.html)
DPD Deutschland GmbH, Wailandtstraße 1. 63741 Aschaffenburg
(https://www.dpd.com/de/de/datenschutz/)
General Logistics Systems Germany GmbH & Co. OHG, GLS Germany-Straße 1 – 7, 36286
Neuenstein
(https://gls-group.com/DE/de/datenschutz-standard/)
DACHSER SE, Head office, Thomas-Dachser-Str. 2, 87439 Kempten (B2B Only)
(https://www.dachser.de/de/datenschutz-277)
Service Provider / Data Recipient :
Shopify International Ltd., Haddington Road, Dublin 4, D04 XN32 Ireland
(https://www.shopify.com/de/legal/datenschutz)
2. Payment Processing
For the purpose of payment processing, we process your name and the corresponding payment amount.For tax reasons, the data processed in this context must be retained for 10 years in accordance with Section 147 of the German Fiscal Code (AO).
To process payments, we use various payment service providers (see “Data Recipients”).
Each payment service provider is responsible for its own data processing. Further information on how these providers process your data can be found in their respective privacy policies.
The legal basis is the underlying contractual relationship in accordance with Article 6(1)(1)(b) GDPR.
Service providers/ data recipients:
Amazon Payments Europe S.C.A. „Amazon Pay“, 38 avenue J.F. Kennedy, L-1855 Luxemburg
(https://pay.amazon.de/help/201212490)
PayPal (Europe) S.à r.l. et Cie, S.C.A. (and PayPal Braintree), 22-24 Boulevard Royal, 2449
Luxemburg, Luxemburg (https://www.paypal.com/de/webapps/mpp/ua/privacy-full)
Adyen N.V., Simon Carmiggeltstraat 6-50, 1011 DJ Amsterdam, Netherlands
(https://www.adyen.com/policies-and-disclaimer/privacy-policy)brainstree
Klarna, Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden
(https://www.klarna.com/de/datenschutz/)
3. Purchase on account, direct debit purchase, and credit check
Credit check
To minimize the risk of payment defaults, we carry out a credit check for business customers. This applies both to purchases on account and to direct debit purchases. For the credit check, we use the services of Creditreform. The legal basis for this is our legitimate interest pursuant to Art. 6 (1) sentence 1 lit. f) GDPR, in reducing payment defaults.
When a contract is concluded, we only store the information that a credit check has been carried out. The data used for this purpose (name and address) are also stored.
Purchase on account
For purchases on account, we process your contact details, delivery address, and purchase information.The legal basis for this data processing is the assertion of our claims arising from the purchase contract and the fulfillment of our contractual obligations pursuant to Art. 6 (1) lit. b) GDPR.
Direct debit purchase
For purchases by direct debit, in addition to contact details, delivery address, and purchase information, we also process bank account details (IBAN, BIC). The legal basis for this data processing is likewise the assertion of our claims under the purchase contract and the fulfillment of our contractual obligations in accordance with Art. 6 (1) lit. b) GDPR.
Retention obligations
We are required to retain accounting records, invoices, and other tax-relevant documents for 10 years in accordance with § 147 of the German Fiscal Code (AO).Data that must be stored for commercial law reasons under § 257 of the German Commercial Code (HGB) are kept for 6 years.
This includes business correspondence, such as order information or quotations.
The data used for the credit check (name and address) are also stored upon conclusion of the contract.Accounting records, order information, invoices, and other tax-relevant data must be retained for 10 years in accordance with § 147 of the German Fiscal Code (AO).Data that must be retained for commercial law purposes under § 257 of the German Commercial Code (HGB) are stored for 6 years.
Service provider/ data recipient:
Creditreform Kassel, Hedwigstraße 16, 34117 Kassel, Germany
(https://www.creditreform.de/kassel/datenschutz )
4. Horze Club
You have the option to register for our bonus program, the “Horze Club,” through your customer account. With each purchase, Horze Club members collect points that can be converted into rewards. Members also receive discounts on orders once a certain number of points is reached, early access to sales, and birthday vouchers. The purpose of this data processing is customer loyalty and the promotion of our products. The data collected is stored for as long as the customer relationship exists.
To provide birthday vouchers, it is necessary to provide your date of birth.
For the implementation of the bonus program, Horze processes the customer data provided as well as information about the purchases made. The legal basis is a contractual relationship in accordance with Art. 6 (1) (b) GDPR, in which the customer provides their data for marketing purposes and, in return, receives discounts or benefits.
Service providers/data recipient:
Shopify International Ltd., Haddington Road, Dublin 4, D04 XN32 Ireland
(https://www.shopify.com/de/legal/datenschutz)
Klaviyo, Inc, 125 Summer Street, Stockwerk 6, Boston, MA, 02110, United States
(https://www.klaviyo.com/legal/privacy)
F. Communication
1. Visiting our website
The purpose of data processing is to provide our online presence.
In order for our website to be displayed on your device, data must be transmitted to your device.The processing of the following data is necessary for this purpose:
- Your public IP address,
- The date and time of access,
- The time zone difference from Greenwich Mean Time (GMT),
- The content of the request (specific page),
- The access status / HTTP status code,
- The amount of data transferred in each case
- information about the browser,
- the operating system and its interface, and
- the language and version of the browser software.
- the website from which the request originates
We do not share the processed data with third parties.The operation of our website and online shop is carried out through the use of the following service providers:
For the operation of our website and online shop:
Shopify International Ltd., Haddington Road, Dublin 4, D04 XN32 Ireland
(https://www.shopify.com/de/legal/datenschutz)
For securing the website:
Amazon Web Services, Inc. 410 Terry Avenue North Seat le WA 98109. United States
(https://aws.amazon.com/de/compliance/germany-data-protect on/)
Content Delivery Network:
Cloudflare Inc., 101 Townsend St. San Francisco, CA 94107, USA
(https://www.cloudflare.com/privacypolicy/)
All necessary data processing agreements have been concluded. Furthermore, the service providers have been obliged to implement adequate technical and organizational security measures. Compliance with these measures may be verified by us at any time.
The provision of the website and the information published on it is based on our legitimate interests in accordance with Art. 6(1)(f) GDPR. Our legitimate interests lie in the presentation of our products and services as well as in the provision of our contact information.
2. Communication (Email, Contact Form, Live Chat)
To ensure effective communication with you, we use various communication systems
To send and receive emails, it is necessary to process the sender’s and recipient’s email addresses. Since different types of information including technical log data are exchanged through email communication, various categories of data are processed.
Highly sensitive data are encrypted before transmission. In addition, we use transport encryption (TLS) for sending and receiving emails to ensure secure communication.We rely on Microsoft’s email infrastructure for this purpose.
Contact form
When you use the contact form, in addition to the communication content itself, certain technical log data that are essential for the operation of the website are also processed.
This includes, in particular, the following categories of data:
· Email address
· Name
· Telephone number (if provided)
· Order number (if applicable)
· Communication content, including any attachments
· IP address
· Date and time of page access
· Accessed page
· Access status / HTTP code
· Browser information (type, version, language)
· Operating system
Ticketsystem
Customer inquiries are processed in the Zendesk ticketing system. Both the transmission and storage of data are carried out in an encrypted manner.
Live-Chat
You can also communicate with us via live chat. The live chat is provided by the service provider Zendesk. The chat service provider processes your IP address as well as technical data about the device and browser you are using.
The processing is based on our legitimate interest in providing and using communication tools in accordance with Art. 6(1)(f) GDPR.
If the communication occurs in connection with an existing or intended contractual relationship, the legal basis is the underlying (pre-)contractual obligation in accordance with Art. 6(1)(b) GDPR. In all other cases, communication with us is based on our legitimate interest in contacting our customers and assisting them with any questions, pursuant to Art. 6(1)(f) GDPR.
Unless legal retention obligations prevent it, your data will be deleted as soon as the purpose of the data processing has been fulfilled.
Service providers / Data recepients:
Zendesk International Ltd., 55 Charlemont Place, Saint Kevin's, Dublin D02 F985, Ireland
(https://www.zendesk.de/company/agreements-and-terms/privacy-not ce/#)
Microsoft Deutschland GmbH, Walter-Gropius-Str. 5, 80807 München, Deutschland
(https://privacy.microsoft.com/de-de/privacystatement)
3. Video Conferences
The purpose of data processing is to operate a system for conducting video conferences, online meetings, and webinars. For this, we use the communication solution Microsoft Teams.
When using this communication solution, various personal data are processed. These include, in particular, your name, email address, IP address, audio and video data, chat transcripts, and the transmitted communication content. Transmission of the communication content occurs exclusively in encrypted form.
The legal basis for data processing depends on the context. If the video conference takes place in connection with the fulfillment of (pre-)contractual obligations, the legal basis is the contractual relationship in accordance with Art. 6(1)(1)(b) GDPR.
If the data processing is carried out for the purpose of application procedures, the legal basis is § 26 of the German Federal Data Protection Act (BDSG) in conjunction with Art. 6(1)(1)(b) GDPR.
Furthermore, data processing for the purpose of conducting online meetings and video conferences is based on our legitimate interest in carrying out efficient communication in accordance with Art. 6(1)(1)(f) GDPR.
Service provider / Data recipient: Microsoft Deutschland GmbH, Walter-Gropius-Str. 5, 80807
Munich, Germany (https://privacy.microsoft.com/de-de/privacystatement)
4. Application Process
The purpose of the data processing is to carry out recruitment procedures.
The data you provide as part of your application includes your personal details, as well as information about your education and previous career,this will be processed by us during the application process.In the event of employment, this data will be stored in your personnel file.
For applications submitted via our website, we use the applicant management software provided by the service provider Personio.
We do not disclose the processed data to third parties. Internally, the application documents are made available to the heads of the respective departments.
The legal basis for processing the application documents is Article 6 (1) sentence 1 (b) GDPR, for the initiation or establishment of contractual relationships.
If no employment relationship is established, the data will be destroyed or deleted no later than six months after the conclusion of the application process.
Service provider/ data recipient: Personio SE & Co. KG Seidlstraße 3 80335 Munich
(www.personio.de/datenschutzerklaerung/)
G. Marketing
1. Personalized newsletters and offers
To provide you with personalized offers, we process information about your previous purchases, your use of our website, and our newsletters. We also take into account any abandoned purchases and may remind you of items left in your shopping cart.
For sending offers and newsletters, it is necessary to process your email address and technical log data. If known, we also use your name to address you personally.
When the newsletter and offer emails are opened, tracking pixels (also known as web beacons or tracking pixels) are loaded from the newsletter provider’s server. This allows us to determine whether and how the contents of the emails are displayed or read.
The service providers used for this purpose are required to implement adequate technical and organizational security measures. Compliance with these security measures can be verified by us at any time.
For sending emails, we use transport-encrypted connections.
The legal basis is your consent in accordance with Art. 6(1)(1)(a) GDPR.
To withdraw your consent to receive newsletters and offers, you can use the unsubscribe link in the newsletters. Alternatively, you can withdraw your consent by sending an email to customerservice@horze.com or by contacting the responsible entity or the data protection officer (see above).
If you no longer wish to receive the emails, you may object to receiving them at any time.
Service provider / data recipient:
Business Customers: Rapidmail GmbH, Wentzingerstraße 21, 79106 Freiburg im Breisgau
(https://www.rapidmail.de/datenschutz)
Private Customers: Klaviyo, Inc, 125 Summer Street, Stockwerk 6, Boston, MA, 02110, United States(https://www.klaviyo.com/legal/privacy)
Analysis of User Behavior
To optimize our offerings and personalize the newsletter, we also track your usage behavior in relation to our online shop via Klaviyo. Cookies are stored on your device to collect the following data:
· IP address (including approximate location),
· Name und E-Mail-Adress,
· Device indentifiers,
· Online identifiers such as cookie or device IDs
· Email open and click rates
· User activities on the website (search terms, displayed content, items in the shopping cart, usage times, previous purchases) or with the newsletter
· Browser information (time zone, operating system, referring links, browser type)
Based on this information, we provide you with targeted recommendations.
The legal basis is your consent in accordance with Art. 6(1)(a) GDPR. To withdraw your consent to receive newsletters, you can use the unsubscribe link in the newsletters. You can adjust your cookie settings at any time via our consent banner.
Service Provider
The service provider Klaviyo receives the data collected as part of our marketing activities. There is a data processing agreement in accordance with Art. 28 GDPR. In addition, Klaviyo is certified under the Data Privacy Framework, which legitimizes data transfers to the USA.
Service provider / Data recipient:
Klaviyo, Inc, 125 Summer Street, 6th Floor, Boston, MA, 02110, United States
(https://www.klaviyo.com/legal/privacy)
2. Direct Mail Marketing
The purposes of data processing are the sending of advertising letters, conducting surveys, and organizing contests.
The data processed includes your name and address. We have obtained this data either from publicly available sources or directly from you.
We only share your personal data with third parties to the extent necessary to fulfill our tasks. This primarily concerns service providers who assist us with the sending of advertising materials or the execution of marketing activities (see “Data Recipients”). These service providers are contractually obliged to maintain appropriate data protection measures and process data only within the scope of our instructions and in compliance with applicable data protection regulations.
Furthermore, we engage service providers who use their own data sets. These data sets have also been obtained from publicly available sources or provided by you based on your consent.
The data processing is carried out on the basis of our legitimate interests (Art. 6(1)(1)(f) GDPR). Our legitimate interest is the promotion of our products.
We store your personal data only as long as it is necessary to fulfill our tasks or until you object. If you object to the use of your data, we will delete your data immediately, unless we are legally obliged to retain it.
Data Recipient:: Klaviyo, Inc, 125 Summer Street, 6th Floor, Boston, MA, 02110, United
States (https://www.klaviyo.com/legal/privacy)
3. Existing Customer Marketing
If you have purchased goods or services from us and provided your email address, you may receive offers for similar products or services via email. This is based on our legitimate interest pursuant to Art. 6(1)(f) GDPR in conjunction with § 7(3) UWG (German Act Against Unfair Competition).
According to § 7(3) UWG, sending advertising emails to existing customers is permitted without explicit prior consent if the following conditions are met:
1. Your email address was obtained in connection with the purchase of a product or service from us.
2. The advertised product or service is similar to the one already purchased.
3. You have not objected to the use of your email address for advertising purposes.
4. You were informed of your right to object free of charge and at any time both when the email address was collected and in each subsequent advertising email.
You can object to the use of your email address for advertising purposes at any time.
An objection can be made via the unsubscribe link in the marketing emails or by sending a message to the responsible party or the data protection officer (see above). After an objection, your contact details will no longer be used for advertising purposes.
4. Google Analytics and Google Signals
To optimize our website, we conduct analyses of website usage using the service Google Analytics. This service sets cookies during your visit to the website in order to collect and process the following information:
- Your public IP address
- The date and time the website was viewed
- The time zone difference to Greenwich Mean Time (GMT)
- The content of the request (specific page)
- The amount of data transferred
- The website from which the request originated
- Information about the browser
- The operating system and its interface
- The language and version of the browser software
Google creates evaluations and reports about website activities on our behalf using the collected information.
We use Google Analytics with the “Google Signals” feature.
(https://support.google.com/analyt cs/answer/7532985?hl=de#zippy=%2Cthemen-in-diesem-
art kel), which enables anonymized analysis of user data across different devices and platforms. The data processed through Google Signals cannot be attributed to individual persons due to the anonymization.
It is not excluded that Google processes data in the USA. The legal basis for this is the EU-US Data Privacy Framework, for which Google has obtained certification. This ensures that the data recipient implements an adequate level of data protection.
The legal basis for the processing is your consent in accordance with Art. 6(1)(a) of the GDPR.
To withdraw your consent for data processing, you can reopen the consent banner and adjust the settings accordingly. Further information and the link to access the consent banner can be found under D7 of this Privacy Policy (Consent).
Service provider/ Data recipient: Google Germany GmbH, ABC-Straße 19, 20354 Hamburg,
Germany (https://policies.google.com/privacy?hl=de)
5. Google Ads Remarketing
By using Google Ads Remarketing, we can display our ads in a targeted manner based on your preferences. Your user actions are recorded, and specific target groups are defined based on these actions. When you visit other websites that also participate in the Google Display Network, ads matching your interests are shown to you.
It is not excluded that Google processes data in the USA. The legal basis for this is the EU-US Data Privacy Framework, for which Google has obtained certification. This ensures that the data recipient implements an adequate level of data protection.
The legal basis for the data processing is the consent you have given, in accordance with Art. 6(1)(a) of the GDPR.
To withdraw your consent, you can access the consent banner again and adjust the settings accordingly. Further information and the link to access the consent banner can be found in Section D, Number 7, under “Consent.”
You can permanently opt out of cookies set by Google Ads Remarketing by downloading and installing the browser plugin available at the following link: https://www.google.com/set ngs/ads/onweb/
Data recipient: Google Germany GmbH, ABC-Straße 19, 20354 Hamburg, Germany
(https://policies.google.com/privacy?hl=de)
6. Google Conversion-Tracking
We use Google Conversion Tracking to optimize our online marketing activities. Google Conversion Tracking allows us to analyze and improve the effectiveness of our online advertising campaigns by recording user actions, such as clicking on our ads.
When you arrive at our website via a Google ad, a cookie is stored on your device. This cookie allows Google and us to track whether an order or purchase was made on our website.
It cannot be ruled out that Google processes data in the USA. The legal basis for this is the EU-US Data Privacy Framework, for which Google has been certified. This ensures that the data recipient implements an adequate level of data protection.
The legal basis for data processing is your consent in accordance with Art. 6(1)(a) GDPR. To withdraw your consent, you can access the consent banner again and adjust the settings accordingly. Further information and the link to access the consent banner can be found in Section D, Number 7, under “Consent.”
Data recipient: Google Germany GmbH, ABC-Straße 19, 20354 Hamburg, Germany
(https://policies.google.com/privacy?hl=de)
7. Google Tag Manager
This website uses the Google Tag Manager. By triggering tags, the tool forwards data to connected analytics tools such as Google Ads or Google Analytics. The Google Tag Manager itself does not set cookies and does not collect personal data. The tool does not analyze the data but merely acts as a hub between the website and the analytics software. The legal basis for data processing is your consent in accordance with Art. 6(1)(a) GDPR.
It is not excluded that Google processes data in the USA. The legal basis for this is the EU-US Data Privacy Framework, for which Google has obtained certification. This ensures that the data recipient implements an adequate level of data protection.
Data recipient: Google Germany GmbH, ABC-Straße 19, 20354 Hamburg, Germany
(https://policies.google.com/privacy?hl=de)
8. Microsoft Advertising and Microsoft Ads Universal Event Tracking
We use Microsoft Advertising on our website to deliver ads on search engines and partner sites. To measure the success of our ads by analyzing user behavior on our websites, we use the Universal Event Tracking (UET) feature within the Microsoft Advertising service. This analysis allows us to tailor our offerings more closely to user interests.
For this purpose, we create a Universal Event Tracking (UET) tag and embed it on every page of our website. By combining it with the conversion cookie, we can track user behavior on our website when users arrive via an advertisement. This includes data on the time spent, the sections of the website visited, and the specific ad that brought the user to our site. Additionally, information about the browser and operating system you use, as well as your IP address, is processed in a pseudonymized manner. These data are not linked to any personal information that could identify you.
It is not excluded that Google may process data in the USA. The legal basis for this is the EU-US Data Privacy Framework, for which Google has been certified. This ensures that the data recipient implements an adequate level of data protection.
The data processing only takes place if you have previously given your consent. The legal basis for the data processing is therefore Article 6(1) sentence 1(a) of the GDPR.
To withdraw your consent, you can reopen the consent banner and adjust the settings accordingly. Further information, as well as the link to access the consent banner, can be found in Section D7 under “Consent.”
Data recipient: Microsoft Deutschland GmbH, Walter-Gropius-Str. 5, 80807 Munich,
Germany (https://privacy.microsoft.com/de-de/privacystatement)
9. Microsoft Ads Remarketing Tag
We use Microsoft’s remarketing tool to optimize our online marketing efforts by showing you interest-based advertisements. These ads relate to content that you have already viewed on our website.
When you access our website via a Microsoft advertisement, a cookie is stored on your device. This cookie allows us to track whether an order or purchase has been made on our website. This enables us to analyze and improve the effectiveness of our ads.
It cannot be ruled out that Google may process data in the USA. The legal basis for this is the EU-US Data Privacy Framework, for which Google has been certified. This ensures that an adequate level of data protection is implemented by the data recipient.
The data processing only takes place if you have previously given your consent. The legal basis for the data processing is therefore Art. 6(1)(a) GDPR.
To withdraw your consent, you can revisit the consent banner and adjust the settings accordingly. Further information, as well as the link to access the consent banner, can be found in Section D7 under “Consent.”
Data recipient: MicrosoftDeutschland GmbH, Walter-Gropius-Str. 5, 80807 Munich,
Germany
(https://privacy.microsoft.com/de-de/privacystatement)
10. Microsoft Clarity
We use the website analytics service Microsoft Clarity to better understand the user-friendliness of our website through our users’ experiences and to optimize the offerings on this website. To do this, the service collects and stores visitor data using cookies and other technologies, such as web beacons and tracking pixels, including the following information:
· Access times and duration of visit,
· IP address (in anonymized form),
· screen size, device type,
· browser information,
· location (country),
· and interactions with page content (such as text input, clicks, mouse-overs, and scrolling behavior).
With Microsoft Clarity, we record the movements of website visitors. By analyzing movement patterns (so-called heatmaps), we can improve our service offerings and tailor them to the needs of our website visitors.
The data is processed in a pseudonymized form.
Microsoft may transfer data to the USA. However, Microsoft is certified under the EU-US Data Privacy Framework to ensure an adequate level of data protection.
Data processing only takes place if you have previously given your consent. The legal basis for data processing is therefore Art. 6 para. 1 sentence 1 lit. a) GDPR. You can withdraw this consent at any time with effect for the future. Further information can be found in Section D, Number 7 of this Privacy Policy.
Data recipient: Microsoft Deutschland GmbH, Walter-Gropius-Str. 5, 80807 Munich,
Germany (https://privacy.microsof .com/de-de/privacystatement)
11. Meta-Pixel
To carry out marketing and remarketing activities, we use the “Meta Pixel” (formerly Facebook Pixel) with advanced data matching, a service provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
The Meta Pixel helps us analyze user behavior on our website and measure the effectiveness of our advertising campaigns on Facebook and Instagram. In addition, we use the Meta Pixel’s advanced data matching feature to further optimize our advertising efforts and deliver targeted ads to the right users.
As soon as a website visitor clicks on one of our advertisements, the Meta Pixel adds a URL parameter to the linked page. After being redirected to our website, this parameter is stored in the visitor’s browser through a cookie on our site. In addition, the cookie captures the email address associated with a Meta account.
When a user performs a specific action on our website (e.g., makes a purchase or fills out a form), the data we provide such as email addresses is transmitted to Meta along with the standard Meta Pixel events (e.g., page views, purchases). Meta compares this data with information stored in Facebook or Instagram profiles to better measure advertising effectiveness and deliver more targeted ads.
All All data transmitted by us to Meta is linked to a user profile by Meta and may be used for Meta’s own advertising purposes in accordance with Meta’s Data Use Policy (https://www.facebook.com/about/privacy/)
Meta may transfer the data to the USA or other third countries. Meta is certified under the EU-US Data Privacy Framework, thereby ensuring an adequate level of data protection.
The legal basis for the data processing is your consent in accordance with Art. 6(1)(a) GDPR.
To withdraw your consent, you can reopen the consent banner and adjust the settings accordingly. Further information, as well as the link to access the consent banner, can be found in Section D, Number 7, under “Consent.” Additionally, you can deactivate personalized advertising in your Meta account settings.
Data Recipient: Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (https://www.facebook.com/about/privacy/)
12. Google reCAPTCHA
To protect against automated attacks, we check whether interactions with our website are generated by a machine. For this purpose, we use the functions of Google reCAPTCHA (https://www.google.com/recaptcha/about/). This generates challenges that can be correctly answered by humans, but not by software systems. Additionally, the following data are analyzed in the background: IP address, referrer URL, information about the operating system and browser, cookies, mouse movements, keystrokes, and time spent on the site.
The legal basis for this data processing is our legitimate interest in protecting our website and the data processed therein, in accordance with Art. 6(1) sentence 1 lit. f) GDPR.
Data recipient: Google Germany GmbH, ABC-Strasse 19, 20354 Hamburg, Germany
(https://policies.google.com/privacy?hl=de)
13. Integration of Google Maps and YouTube
To display maps or YouTube videos, we use the services provided by Google on our website.
When displaying map content or YouTube videos, the following information is transmitted to Google: your public IP address, the date and time of the website visit, the time zone difference to Greenwich Mean Time (GMT), the content of the request (the specific page), the amount of data transferred, the website from which the request originated, information about the browser, the operating system and its interface, as well as the language and version of the browser software.
The display of the content and the associated transmission of data to Google only take place after your prior consent. The legal basis for this data processing is therefore Article 6(1) sentence 1(a) of the GDPR.
To withdraw your consent for data processing, you can reopen the consent banner and adjust the settings accordingly. Further information, as well as the link to access the consent banner, can be found in Section D of this Privacy Policy (Consent).
Data recipient:
Google Germany GmbH, ABC-Strasse 19, 20354 Hamburg, Germany
(https://policies.google.com/privacy?hl=de)
YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA (https://policies.google.com/privacy?
14. Social Media
We operate the following social media pages:
- Facebook:https://www.facebook.com/horze.horse.equipment
- Instagram:https://www.instagram.com/horze_equestrian/
- YouTube: https://www.youtube.com/user/HorzeTV
- X: https://x.com/horzeequestrian
- XING:https://www.xing.com/pages/horzeinternationalegmbh
- LinkedIn:https://www.linkedin.com/company/horze/?originalSubdomain=de
- Pinterest: https://de.pinterest.com/horze/
- TikTok: https://www.tiktok.com/@horze_official
The purposes of data processing are to inform the public about our offerings and to provide additional channels of communication.
No data is transmitted to social media platforms simply by visiting our website. Data is only processed by the respective providers once you access our subpages on their platforms, as part of the information necessary for providing a webpage.
We have no control over how and which other data is processed by the platform operators. Information about data processing can be found in the respective privacy policies (see “Data Recipients”).
The operation and use of the platforms are based on our legitimate interest pursuant to Art. 6 (1) sentence 1 lit. f) GDPR in promoting our products and services, as well as in providing additional communication channels.
If we publish personally identifiable content from you, this publication is based on your consent in accordance with Art. 6 (1) sentence 1 lit. a) GDPR. To withdraw your consent, please contact the responsible authority or the data protection officer.
Additional data on the platform operators:
Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
(https://www.facebook.com/policy.php)
X, Inc., 355 Market Street, Suite 900, San Francisco, CA 94103, USA
YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA (https://policies.google.com/privacy?
Instagram, LLC, 1601 Willow Rd, Menlo Park, CA 94025, USA
(https://help.instagram.com/519522125107875)
New Work SE (XING), Dammtorstraße 30, 20354 Hamburg, Germany
(https://privacy.xing.com/de/datenschutzerklaerung)
LinkedIn Ireland Unlimited Company (Instagram), Wilton Plaza, Wilton Place, Dublin 2, Ireland
(https://www.linkedin.com/legal/privacy-policy)
TikTok, Beijing Bytedance Technology Ltd., 48 Zhichun Lu Jia, Haidian Qu, Peking
(https://www.t ktok.com/legal/page/eea/privacy-policy/de)
Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland
(https://policy.pinterest.com/de/privacy-policy)
15. Product Reviews
On our website, you have the option to submit a product review, which will be displayed to other users in the product view. Reviews can only be submitted if you have previously created a customer account and logged in. Your review, first name, and stated occupation will be published.To provide product reviews, we use the service provider REVIEWS.io 2020 GmbH. A data processing agreement has been concluded with this service provider.
If a third party reports your review as unlawful, we reserve the right to contact you via email regarding this matter or to delete your review.
The legal basis is our legitimate interest in publishing product reviews in accordance with Art. 6 (1) sentence 1 lit. f) GDPR.
Product reviews are stored as long as the product is offered in our online shop.
Data recipient: REVIEWS.io 2020 GmbH, Skalitzer Str. 104, 10997 Berlin, Germany
(https://www.reviews.io/legal/user-privacy-policy)
16. Rating Reminders
If you have made a purchase with us, we will send you a reminder prompting you to review your purchase.
For sending review reminders, we use the service provider REVIEWS.io 2020 GmbH. On our behalf, they receive and process your email address and purchase data to send you a review reminder for the products you purchased from us. The legal basis for this data processing is your consent according to Art. 6(1)(a) GDPR. You can withdraw your consent at any time.
A data processing agreement has been concluded with the service provider.
Data recipient: REVIEWS.io 2020 GmbH, Skalitzer Str. 104, 10997 Berlin, Germany
(https://www.reviews.io/legal/user-privacy-policy)
17. Customer Surveys
We regularly conduct customer surveys to improve your experience with our products and services and to collect your feedback. For this purpose, we use "SurveyMonkey." SurveyMonkey enables the creation and analysis of surveys.
The following personal data are processed in this context: name, email address, specific responses, as well as technical protocol data (e.g., participation timestamp, device used).
The legal basis for the data processing is your consent pursuant to Art. 6(1)(a) GDPR. You can revoke your consent at any time by notifying the responsible entity or the data protection officer.
Data recipient:
SurveyMonkey Europe UC, Ella House, Suite 40.4, 40 Merrion Square East, Dublin 2 D02 NP96,Ireland
(https://de.surveymonkey.com/mp/legal/privacy/)
18. Criteo
We use the services of Criteo SA to optimize our online marketing. Through retargeting technology, data about your usage behavior on our website is collected and stored in cookies on your device. This enables us to determine your interests and provide you with personalized advertising. The processing of your data is carried out in a pseudonymized form. The legal basis for this data processing is your consent in accordance with Art. 6 (1) sentence 1 lit. a) GDPR.
To withdraw your consent, you can reopen the consent banner and adjust your settings accordingly. Further information, as well as the link to access the consent banner, can be found in Section D, number 7, under “Consent.”
Alternatively, you can also withdraw your consent using the following setting:
htps://www.criteo.com/de/privacy/disable-criteo-services-on-internet-browsers/.
Data recipient: Criteo SA, 32 Rue Blanche, 75009 Paris, France
(https://www.criteo.com/de/privacy/)
19. Klar
We use the software “Klar” for data-driven analysis of user behavior on our website. The purpose of this data processing is to evaluate our marketing activities and to improve our offerings.
For this purpose, the “Klar Pixel” integrated into our website, as well as connections to external data sources such as advertising platforms, social networks, or our shop system, collect, combine, and analyze the following data:
· Information about the use of our website (e.g., pages visited, click paths, time spent)
· Technical information (e.g., IP address, device type, operating system, browser type, screen resolution)Source data (e.g., referrer URL, campaign identifiers from advertisements)
· Purchase and transaction data from our shop system (e.g., shopping cart, order value, products)
· Interactions with our marketing activities (e.g., clicks on ads, opening of newsletters)
The processing of this data is based on your consent in accordance with Art. 6(1)(a) GDPR.
To withdraw your consent, you can reopen the consent banner and adjust your settings accordingly. Further information, as well as the link to access the consent banner, can be found in Section D, number 7, under “Consent.”
Data recipient: Klar Insights GmbH, Marktstr. 18, 80802 Munich
(https://www.getklar.com/data-protect on)
20. WhatsApp Channel
To promote our services, we operate our own channel on the messaging service provider WhatsApp.WhatsApp Channels only have a one-way communication function and are separate from the regular messaging service.Therefore, it is not possible to use the WhatsApp Channel for direct communication.However, you can view channel status updates, react to them, and follow our channel as a subscriber.
Other subscribers can only see your reaction, but not your name or phone number.
Depending on your privacy settings in WhatsApp, we may be able to see your profile name and, if applicable, your profile picture. However, your phone number is not fully visible.The legal basis for providing the channel is our legitimate interest in using a communication service and advertising platform in accordance with Art. 6(1)(f) GDPR.
We have concluded a data processing agreement with the service provider. For the transfer of user data to the USA, an adequacy decision by the European Commission pursuant to Art. 45 GDPR is in place.
Data recipient: WhatsApp Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland
(https://www.whatsapp.com/privacy)
H. Website/ Onlineshop
1. Onlineshop: Customer account
The purpose of data processing is to provide a function for creating a personal customer account.The personal customer account enables convenient order processing and management of wish lists by permanently storing your data.
As part of support and maintenance work, the service providers involved may gain access to personal data.
The provision of the customer account takes place within the framework of a (pre-)contractual relationship; therefore, the legal basis is Art. 6(1)(b) GDPR.
You can delete your customer account via the customer menu or by contacting our customer service. Your data will be deleted unless legal retention periods prevent deletion.
Service provider/ Data recipient:
To display the website or online shop::
Shopify International Ltd., Haddington Road, Dublin 4, D04 XN32 Ireland
(https://www.shopify.com/de/legal/datenschutz)
For securing the website :
Amazon Web Services, Inc. 410 Terry Avenue North Seat le WA 98109. United States(htt ps://aws.amazon.com/de/compliance/germany-data-protect on/)
Content Delivery Network:
Cloudflare Inc., 101 Townsend St. San Francisco, CA 94107, USA
(https://www.cloudflare.com/privacypolicy/)
2. Business Customer Area
For our business customers, we provide a dedicated business customer area to manage existing and new orders.
The following customer data is processed: email address, company name, and address details.
The provision of the business customer area is carried out within the framework of a
(pre-)contractual obligation. Therefore, the legal basis is Art. 6 (1) sentence 1 lit. b GDPR.
Service provider/ Data recipient:
Shopify Internat onal Ltd., Haddington Road, Dublin 4, D04 XN32 Ireland
(https://www.shopify.com/de/legal/datenschutz)
3. Cookies
When viewing websites, cookies and similar files are stored on your computer. These files are used to save content and personal settings. You can delete cookies at any time using your browser settings or prevent their storage altogether.
The cookies are divided into three categories:
Essential Cookies: These cookies are necessary for the proper display and functioning of the website.
Functional Cookies: These cookies enable the use or display of additional features. Functions, such as the display of videos or map services.
Marketing Cookies: These cookies are created to optimize our services.
The use of functional and marketing cookies always requires prior consent. We use a consent banner to store your selected cookie preferences.
You can withdraw any consents you have given via the consent banner by clicking the “Privacy Settings” link located at the bottom right of the website.
Our website also uses session storage to save temporary data during your session. This data is used exclusively to ensure the proper functioning of the website.
They are used to ensure the proper functioning of our services, such as storing shopping cart contents or managing login data while the browser window or tab remains open. Once the browser or tab is closed, all stored data is automatically deleted.
We also use local storage to save certain data on your device that remains even after closing the browser. This data is used to enhance your user experience by storing preferences or settings that you can use on future visits, such as your preferred language or the website’s design. Data in local storage remains saved on your device until you manually delete it.
| Group | Service | Cookie | Function/ processing activity | lifespan | Legal basis |
| Essential | AEC | This cookie is used to ensure the security of the website and to prevent fraud attempts by detecting unauthorized activities. | 6 months | Art. 6(1) sentence 1, letter (f) GDPR | |
| Functional | Microsoft Ads | ANONCHK | This cookie helps track clicks and validate the user’s session to ensure a consistent user experience. | 10 minutes | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Microsoft Ads | CLID | This cookie tracks the user’s interactions on the website to enable analytics and develop targeted marketing strategies. | 1 year | Art. 6(1) sentence 1, letter (f) GDPR |
| Essential | CONSENT | This cookie stores the user’s settings regarding accepted cookies to ensure compliance with data protection regulations. | 2 years | Art. 6(1) sentence 1, letter (f) GDPR | |
| Marketing | DV | This cookie is used to optimize advertisements and personalize content based on the user’s interests. | 7 minutes | Art. 6(1) sentence 1, letter (f) GDPR | |
| Functional | FPAU | This cookie assigns a specific ID to the visitor. This allows the website to determine the number of individual user visits for analytics and statistics. | 3 months | Art. 6(1) sentence 1, letter (f) GDPR | |
| Marketing | FPGCLAW | This cookie is used to track campaign-related information about the user. | 3 months | Art. 6(1) sentence 1, letter (f) GDPR | |
| Marketing | FPGCLGS | This cookie is used to track user information related to campaigns. | 3 months | Art. 6(1) sentence 1, letter (f) GDPR | |
| Marketing | FPID | Records statistical data about visitors’ behavior on the website. Used by the website operator for internal analytics. | 13 months | Art. 6(1) sentence 1, letter (f) GDPR | |
| Marketing | FPLC | This is used to register a unique ID, which is used to generate statistical data on how the visitor uses the website. | 1 day | Art. 6(1) sentence 1, letter (f) GDPR | |
| Marketing | Microsoft | MSPTC | This cookie records data about the visitor. The information is used to optimize the relevance of advertising. | 13 months | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Microsoft | MUID | This cookie is set to store and track visits across different websites. | 13 months | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Microsoft | MR | This cookie tracks the effectiveness of advertisements to improve marketing strategy through analytics and reports. | 7 days | Art. 6(1) sentence 1, letter (f) GDPR |
| Essential | Microsoft | SM | This cookie is used as a security token to protect access to sensitive areas of the website and prevent misuse. | Session | Art. 6(1) sentence 1, letter (f) GDPR |
| Essential | SOCS | This cookie stores the user’s consents for different cookie types and processing purposes to ensure compliance. | 13 months | Art. 6(1) sentence 1, letter (f) GDPR | |
| Marketing | Microsoft | SRM_B | This cookie is used to target advertisements to users based on their behavior on the website, thereby increasing advertising effectiveness. | 1 year | Art. 6(1) sentence 1, letter (f) GDPR |
| Functional | __Secure- ENID | This cookie is used to personalize content and enhance the security of the user account through additional protective measures. | 13 months | Art. 6(1) sentence 1, letter (f) GDPR | |
| Essential | Cloudfare | __cf_bm | This cookie identifies and blocks malicious bots to protect the website from abuse and ensure its availability. | 30 minutes | Art. 6(1) sentence 1, letter (f) GDPR |
| Functional | Consent manager | __cmpcccx33 480 | Stores user preferences for cookies. | 1 year | Art. 6(1) sentence 1, letter (f) GDPR |
| Essential | Consent manager | __cmpconsen tx33480 | Stores consent for the cookie categories. | 1 year | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Consent manager | __cmpiuid | This cookie is used to uniquely identify users and provide personalized content based on user preferences. | 1 year | Art. 6(1) sentence 1, letter (f) GDPR |
| Essential | Consent manager | _cmp_purpos es | This cookie stores the different purposes for which the user has given consent and documents them in a legally compliant manner. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Google Tag Manager | __gtm_camp aign_url | Stores the campaign URL for analytics. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Google Tag Manager | _gtm_referrer | This cookie stores referrer data to analyze the source of website traffic and better understand user flows. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Microsoft Clarity | _clck | Used to store a unique user ID. | 1 year | Art. 6(1) sentence 1, letter (f) GDPR |
| Stastics | Microsoft Clarity | _clsk | Used to store a user’s page views and consolidate them into a single session recording. | 1 year | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Horze | _dcid | Collects information about user behavior across multiple websites. This information is used to optimize the relevance of advertising on the website. | 13 months | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | _fbp | This cookie is used by Facebook to identify users and deliver targeted advertising based on their behavior on the website. | 3 months | Art. 6(1) sentence 1, letter (f) GDPR | |
| Marketing | _ga | This cookie is used by Google Analytics to analyze user behavior on the website and generate reports on website usage. | 2 years | Art. 6(1) sentence 1, letter (f) GDPR | |
| Marketing | _ga_ENGW4C HBD3 | This cookie captures user interactions within a specific environment to generate detailed analyses of user actions. | 1 year | Art. 6(1) sentence 1, letter (f) GDPR | |
| Marketing | _ga_MXF922 GB6K | This cookie is used to analyze user behavior on a website and gain detailed insights into how users interact with the site. | 1 year | Art. 6(1) sentence 1, letter (f) GDPR | |
| Marketing | _gcl_aw | This cookie is used by Google to enable ad serving or retargeting. | 3 months | Art. 6(1) sentence 1, letter (f) GDPR | |
| Marketing | _gcl_gs | This cookie is used by Google to enable ad serving or retargeting. | 3 months | Art. 6(1) sentence 1, letter (f) GDPR | |
| Marketing | _gclid | This cookie is used to capture click data from Google ads and enable conversion tracking for advertising campaigns. | 1 month | Art. 6(1) sentence 1, letter (f) GDPR | |
| Marketing | TikTok | _tt_enable_c ookie | This cookie stores information used to enable TikTok Pixel functions to analyze user interactions. | 13 months | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | TikTok | _ttp | This cookie is used to collect and analyze data for advertising campaigns run through the TikTok platform. | 13 months | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Microsoft (Bing Ads) | _uetsid | This cookie is used to store and track visits across different websites. | 1 day | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Microsoft (Bing Ads) | _uetvid | This cookie is used to store and track visits across multiple websites. | 13 months | Art. 6(1) sentence 1, letter (f) GDPR |
| Essential | Ablyft | ablyft_uvs | These cookies allow us to monitor and improve the performance of our website. | 3 months | Art. 6(1) sentence 1, letter (f) GDPR |
| Functional | Horze | cdv | This cookie is used to store user-specific settings and preferences, enabling a personalized user experience. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Functional | Horze | ipad_device_ menu | This cookie stores device settings used on an iPad to enable optimized display and usability of the website. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Functional | Horze | pageviewCount | This cookie counts the number of page views to generate statistics on website usage. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Essential | Horze | screen_resolu tion | This cookie captures the device’s screen resolution to ensure optimal display of content. | 4 weeks | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | sid | This cookie is set to deliver advertising or retargeting and to prevent fraud. | session | Art. 6(1) sentence 1, letter (f) GDPR | |
| Functional | Horze | test cookie | This cookie is used to check whether cookies are enabled in the user’s browser. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | AddThis | uid | Collects statistics on website usage. (Audience measurement) | 1 year | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | AddThis | uuid | By assigning a unique identifier to each user, this cookie can track user behavior across multiple websites, platforms, and applications. | 1 year | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Microsoft Advertising | _uetsid | Stores the unique session ID for Universal Event Tracking (UET). | 24 hours | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Microsoft Advertising | _uetsid_exp | Stores the expiration date of the _uetsid cookie. | 24 hours | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Microsoft Advertising | _uetvid | Stores a unique visitor ID for long-term tracking. | 13 months | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Microsoft Advertising | _uetvid_exp | Stores the expiration date of the _uetvid cookie. | 13 months | Art. 6(1) sentence 1, letter (f) GDPR |
| Essential | Wordpress | _wp_storage_ test | Tests the browser’s storage capability. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Essential | Horze | checkoutData | Stores data on ongoing orders or checkout information. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Functional | Horze | lastExternalR eferrer | Tracks the last external referrer from which a user arrived. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Functional | Horze | lastExternalR eferrerTime | Stores the time of the last external referrer. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Essential | Wordpress-Plugin | wps-1 | Session cookie linked to a specific plugin. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Essential | Wordpress-Plugin | wps-usersession | Stores session data of a user on WordPress pages. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Hotjar | _cltk | Tracking key for behavior analysis with Hotjar. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Functional | ABlyf | ablyft_session _check | Checks whether an active session exists. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Functional | Horze | pageviewCou nt | Counts the number of page views by a user. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | Horze | prevContentG roup | Stores the last content group viewed by a user. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | TikTok (Pixel) | tt_appInfo | Stores information about the TikTok app integration. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | TikTok (Pixel) | tt_pixel_sessi on_index | Counts the number of sessions tracked with the TikTok Pixel. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Marketing | TikTok (Pixel) | tt_sessionId | Stores a unique ID for the user’s TikTok session. | session | Art. 6(1) sentence 1, letter (f) GDPR |
| Essential | Wordpress | wpsStore | Stores data associated with the WordPress shop system. | session | Art. 6(1) sentence 1, letter (f) GDPR |