Privacy Policy The person responsible for data processing is : Dennis Bruns, Albert-Schweitzer Straße, Reken, Email: brunsd9@gmail.com, Phone: +4915236510262. We appreciate your interest in our online shop. Protecting your privacy is very important to us. Below, we provide detailed information about how we handle your data.
1) Introduction and contact details of the person responsible
1.1 We are pleased that you are visiting our website and thank you for your
Interest. Below we will inform you about how we handle your
personal data when using our website. Personal data
This includes all data with which you can be personally identified.
1.2 Person responsible for data processing on this website within the meaning of
General Data Protection Regulation (GDPR) is Deportes GmbH, Albert-Schweitzer-Straße,
48734 Reken, Germany, Tel.: 015236510262, Email: deportes.men@gmail.com.
The person responsible for the processing of personal data is
natural or legal person who, alone or jointly with others, has the
decides on the purposes and means of processing personal data.
2) Data collection when visiting our website
2.1 If you use our website for informational purposes only, i.e. if you do not
register or otherwise provide us with information, we only collect such
Data that your browser transmits to the website server (so-called “server log files”).
When you visit our website, we collect the following data, which is technically necessary for us
necessary to display the website to you:
- Our visited website
- Date and time of access
- Amount of data sent in bytes
- Source/reference from which you came to the page
- Browser used
- Operating system used
- IP address used (if applicable: in anonymized form)
The processing is carried out in accordance with Art. 6 (1) (f) GDPR on the basis of our legitimate
Interest in improving the stability and functionality of our website.
The data will not be passed on or used in any other way. We retain
However, we reserve the right to subsequently check the server log files if specific
There are indications of illegal use.
2.2 For security reasons and to protect the transmission, this website uses
personal data and other confidential content (e.g. orders or
Requests to the controller) use SSL or TLS encryption. You can
encrypted connection by the string “https://” and the lock symbol in
your browser line.
3) Hosting & Content Delivery Network
3.1 Shopify
For hosting our website and displaying the page content we use the
System of the following provider: Shopify International Limited, Victoria Buildings, 2.
Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland (“Shopify”)
Data will also be transferred to: Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4,
Canada
All data collected on our website are stored on the servers of the provider
We have a data processing agreement with the provider
which ensures the protection of the data of our site visitors and a
Unauthorized disclosure to third parties is prohibited.
When data is transferred to Canada, an appropriate level of data protection
guaranteed by an adequacy decision of the European Commission.
3.2 Cloudflare
We use a content delivery network from the following provider: Cloudflare Inc., 101
Townsend St. San Francisco, CA 94107, USA
This service allows us to store large media files such as graphics, page content or
To deliver scripts faster via a network of regionally distributed servers.
is carried out to protect our legitimate interest in improving the stability
and functionality of our website in accordance with Art. 6 (1) (f) GDPR. We have
Provider has concluded a data processing agreement that ensures the protection of data
of our site visitors and prevents unauthorized disclosure to third parties
prohibited.
For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which is based on
an adequacy decision of the European Commission, compliance with the
European data protection standards.
4) Cookies
In order to make visiting our website attractive and to facilitate the use of certain
To enable functions, we use cookies, which are small text files that are stored on
Your device. Some of these cookies are deleted after closing the
Browsers are automatically deleted (so-called “session cookies”), some remain
These cookies stay on your device for longer and allow the storage of
Page settings (so-called “persistent cookies”). In the latter case, you can
Storage period of the overview of the cookie settings of your web browser
remove.
If individual cookies used by us also contain personal data
are processed, the processing is carried out in accordance with Art. 6 (1) (b) GDPR either
to execute the contract, in accordance with Art. 6 (1) (a) GDPR in the case of
consent given or in accordance with Art. 6 (1) (f) GDPR to safeguard our
legitimate interests in the best possible functionality of the website and a
customer-friendly and effective design of the site visit.
You can set your browser to inform you about the setting of cookies
and decide individually whether to accept them or to refuse the acceptance of cookies
for certain cases or generally.
Please note that if you do not accept cookies, the functionality of our
Website may be restricted.
5) Contact
When you contact us (e.g. via contact form or email),
– solely for the purpose of processing and answering your request and only
to the extent necessary for this purpose – personal data is processed.
The legal basis for processing this data is our legitimate interest in
to answer your request in accordance with Art. 6 (1) (f) GDPR.
Contacting is based on a contract, so additional legal basis for the
Processing Art. 6 (1) (b) GDPR. Your data will be deleted if the
circumstances indicate that the matter in question has been finally clarified
and provided that there are no statutory retention obligations to the contrary.
6) Data processing when opening a customer account
According to Art. 6 (1) (b) GDPR, personal data are processed in the respective
necessary extent, if you provide us with this information when
Opening a customer account. What data is required for account opening
required, please refer to the input mask of the corresponding form on
our website.
You can delete your customer account at any time and can do so by sending a message
to the above-mentioned address of the responsible party. After deletion of your customer account
Your data will be deleted provided that all contracts concluded with it have been fully
are processed, there are no statutory retention periods that conflict with them and
we have no legitimate interest in continuing to store the data.
7) Use of customer data for direct marketing
7.1 Registration for our email newsletter
If you subscribe to our email newsletter, we will send you
regular information about our offers. Mandatory information for sending
of the newsletter is your email address alone. Providing further data is voluntary and
is used to address you personally. For sending newsletters
we use the so-called double opt-in procedure, which ensures that you
www.it-recht-kanzlei.de
Newsletter only when you have given us your consent by clicking on the
By using the verification links sent to your email address you expressly consent to the
have confirmed receipt of the newsletter.
By activating the confirmation link you give us your consent for the
Use of your personal data in accordance with Art. 6 (1) (a) GDPR.
We store your IP address registered by your Internet Service Provider (ISP) and
the date and time of registration in order to be able to trace any possible misuse of your email address at a later date.
Data collected when registering for the newsletter will be strictly limited
used.
You can unsubscribe from the newsletter at any time via the link provided in the newsletter
or by sending a corresponding message to the person responsible mentioned above
After unsubscribing, your email address will be immediately deleted from our
Newsletter distribution list will be deleted unless you have expressly consented to further use of your
have consented to the processing of your data or we have agreed to further data use
which is permitted by law and about which we inform you in this statement
inform.
7.2 Shopify Email
Our email newsletters are sent via this provider: Shopify
International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04
XN32, Ireland
Data will also be transferred to: Shopify Inc., 150 Elgin St, Ottawa, ON K2P 1L4,
Canada
Based on our legitimate interest in an effective and user-friendly
For newsletter marketing, we pass on the data you provided when registering for the newsletter
Data according to Art. 6 (1) (f) GDPR to this provider so that it can
Sends newsletters on our behalf.
Subject to your express consent in accordance with Art. 6 (1) (a) GDPR, the
Providers also carry out a statistical evaluation of the success of newsletter campaigns
by means of web beacons or tracking pixels in the emails sent, which
Measure opening rates and specific interactions with the newsletter content
This also includes information about the device (e.g. time of access, IP address, browser type and operating system) being collected and evaluated, but not linked to
other data sets.
You can revoke your consent to newsletter tracking at any time with effect for the
Revoke future.
We have concluded a data processing agreement with the provider, which
Protects the data of our site visitors and prohibits its transfer to third parties.
When data is transferred to Canada, an appropriate level of data protection
guaranteed by an adequacy decision of the European Commission.
8) Data processing for order processing
8.1 To the extent necessary for the execution of the contract for delivery and payment purposes,
The personal data we collect will be processed in accordance with Art. 6 (1) (b)
GDPR to the commissioned transport company and the commissioned credit institution
passed on.
If we provide you with updates for
goods with digital elements or for digital products, we process the
contact details you provided when ordering (name, address, email address),
to inform you within the scope of our legal obligation to provide information in accordance with Art. 6 (1) (c)
GDPR by suitable means of communication (e.g. post or email) via
upcoming updates within the legally stipulated period in person
Your contact details will be used strictly for the purpose of sending you information
about updates owed by us and for this purpose by us
only processed to the extent necessary for the respective information.
To process your order we also work with the following
service provider(s) who assist us in whole or in part in the implementation
concluded contracts. These service providers will be paid in accordance with
following information certain personal data is transmitted.
8.2 Transfer of personal data to shipping service providers
- DHL
We use the following provider as our transport service provider: DHL Paket GmbH,
Sträßchensweg 10, 53113 Bonn, Germany
We provide your email address and/or telephone number in accordance with Art. 6 (1) (a)
GDPR before delivery of the goods for the purpose of agreeing a delivery date
or for delivery notification to the provider, provided that you have chosen this during the ordering process
have given your express consent. Otherwise, for the purpose of
Delivery according to Art. 6 (1) (b) GDPR only the name of the recipient and the
Delivery address to the provider. The transfer will only take place if this is necessary for the
Delivery of goods is required. In this case, prior agreement with the
Delivery date with the provider or delivery notification is not possible.
The consent can be revoked at any time with effect for the future to the above
designated responsible person or to the provider.
8.3 Use of payment service providers (payment services)
- Apple Pay
If you choose the payment method “Apple Pay” from Apple Distribution International
(Apple), Hollyhill Industrial Estate, Hollyhill, Cork, Ireland, the
Payment processing via the “Apple Pay” function of your iOS, watchOS or macOS
operated device by charging an account stored with “Apple Pay”
Copyright © 2025, IT Law Firm · Alter Messeplatz 2 · 80339 Munich
www.it-recht-kanzlei.de
Payment card. Apple Pay uses security features built into the hardware
and software of your device to protect your transactions.
Authorizing a payment is therefore the entry of a code previously specified by you
as well as verification using the “Face ID” or “Touch ID” function of their
device required.
For the purpose of payment processing, your data entered during the order process
information provided along with the information about your order in
encrypted form to Apple. Apple then encrypts this data
again with a developer-specific key before the data is used to perform
the payment to the payment service provider of the payment card stored in Apple Pay
The encryption ensures that only the website through which the
purchase has been made, can access the payment data. After the payment
has been made, Apple will send your
Device account number and a transaction-specific, dynamic
Security code to the exit website.
If personal data is processed during the described transmissions
are processed exclusively for the purpose of payment processing
pursuant to Art. 6 (1) (b) GDPR.
Apple retains anonymized transaction data, including the approximate
Purchase amount, approximate date and time, and whether the
The transaction has been successfully completed. Anonymization ensures
Personal reference is completely excluded. Apple uses the anonymized data to
Improving Apple Pay and other Apple products and services.
When you use Apple Pay on iPhone or Apple Watch to complete a purchase
that you made through Safari on the Mac, the Mac
and the authorization device via an encrypted channel on Apple's servers.
Apple does not process or store any of this information in a format that
Your person can be identified. You can change the option to use
Disable Apple Pay on your Mac in your iPhone's settings. Go to
"Wallet & Apple Pay" and uncheck "Allow payments on Mac."
For further information on data protection with Apple Pay, please see the following
Internet address: https://support.apple.com/de-de/HT203027
- Google Pay
If you choose the payment method “Google Pay” from Google Ireland Limited, Gordon
House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”), the
Payment processing via the “Google Pay” application of your device with at least Android 4.4
(“KitKat”) and equipped with an NFC function
by charging a payment card stored with Google Pay or a payment
verified payment system (e.g. PayPal). To authorize a payment via Google Pay
of more than 25,- €, the prior unlocking of your mobile device by
the verification measure set up (e.g. facial recognition, password,
Copyright © 2025, IT Law Firm · Alter Messeplatz 2 · 80339 Munich
www.it-recht-kanzlei.de
Fingerprint or pattern) is required.
For the purpose of payment processing, your data entered during the order process
information provided along with information about your order to Google
Google then transmits your data stored in Google Pay
Payment information in the form of a unique transaction number to the
The initial website used to verify a payment. This
Transaction number does not contain any information about the real payment data of your
Google Pay, but is used as a one-time valid numeric
Token is created and transmitted. For all transactions via Google Pay,
Google acts merely as an intermediary to process the payment process.
The transaction is carried out exclusively in the relationship between the user
and the source website by debiting the account stored with Google Pay
means of payment.
If personal data is processed during the described transmissions
are processed exclusively for the purpose of payment processing
pursuant to Art. 6 (1) (b) GDPR.
Google reserves the right to charge certain fees for each transaction made through Google Pay.
to collect, store and evaluate process-specific information.
include the date, time and amount of the transaction, merchant location and
-description, a description of the purchased goods provided by the merchant
or services, photos you have attached to the transaction, the name and email address of the seller and buyer or the sender and recipient, the
payment method used, your description of the reason for the transaction and
if applicable, the offer associated with the transaction.
According to Google, this processing is carried out exclusively in accordance with Art. 6 (1) (f) GDPR
based on the legitimate interest in proper accounting, the
Verification of process data and optimization and maintenance of the functionality of the
Google Pay service.
Google also reserves the right to link the processed transaction data with other
To combine information that is collected when using other Google services by
Google collects and stores.
The Google Pay terms of use can be found here:
https://payments.google.com/payments/apissecure/u/0/get_legal_document?ldo=0&ldt=googlepaytos&ldl=de
Further information on data protection at Google Pay can be found at the following
Internet address:
https://payments.google.com/payments/apissecure/get_legal_document?ldo=0&ldt=privacynotice&ldl=de
- Klarna
This website offers one or more online payment methods of the following
www.it-recht-kanzlei.de
Provider: Klarna Bank AB, Sveavägen 46, 111 34 Stockholm, Sweden
If you select a payment method from the provider that requires you to make an advance payment (e.g.
Credit card payment), your details will be transferred to them as part of the order process.
payment details provided (including name, address, bank and
Payment card information, currency and transaction number) as well as information about
the content of your order in accordance with Art. 6 (1) (b) GDPR.
In this case, your data will only be passed on for the purpose of
Payment processing with the provider and only to the extent that it is necessary for this purpose.
If you select a payment method where the provider makes an advance payment (e.g.
Invoice, installment purchase or direct debit), you will also be
asked to provide certain personal information (first and last name, street, house number,
Postal code, town, date of birth, email address, telephone number, if applicable, data on a
alternative means of payment).
In order to pursue our legitimate interest in determining the solvency of our
In order to protect the privacy of our customers, we will process this data in accordance with Art. 6 (1) (f) GDPR for
The provider will check the creditworthiness of the data subject on the basis of
the personal data you have provided as well as other data (such as
shopping cart, invoice amount, order history, payment experiences), whether the
selected payment option with regard to payment and/or
bad debt risks can be granted.
In addition to provider-internal criteria, the decision within the scope of the application review can be
Criteria according to Art. 6 (1) (f) GDPR also include identity and credit information
included by the following credit agencies:
https://cdn.klarna.com/1.0/shared/content/legal/terms/0/de_de/credit_rating_agencies
The credit report may contain probability values (so-called score values).
As far as score values are included in the result of the credit report, they have their
Basis in a scientifically recognized mathematical-statistical
Procedure. The calculation of the score values includes, but is not limited to,
exclusively, address data.
You can object to this processing of your data at any time by sending us a message or
to the provider. However, the provider may still
authorized to process your personal data if this is necessary for
contractual payment processing is necessary.
- Paypal
This website offers one or more online payment methods of the following
Provider: PayPal (Europe) Sarl et Cie, SCA, 22-24 Boulevard Royal,
L-2449 Luxembourg
If you select a payment method from the provider that requires you to make an advance payment,
to them your payment details provided during the order process (including
Name, address, bank and payment card information, currency and
www.it-recht-kanzlei.de
Transaction number) as well as information about the content of your order in accordance with Art. 6
Paragraph 1 lit. b GDPR. In this case, your data will be passed on
solely for the purpose of processing payments with the provider and only to the extent
than is necessary for this purpose.
If you choose a payment method where we pay in advance, you will be
The ordering process also requires you to provide certain personal information (first and last name,
Street, house number, postal code, city, date of birth, email address, telephone number,
if necessary, details of an alternative means of payment).
In such cases, in order to safeguard our legitimate interest in determining your
In order to maintain your ability to pay, we will process this data in accordance with Art. 6 (1) (f)
GDPR for the purpose of a credit check to the provider. The provider
checks on the basis of the personal data you provide and other data
(such as shopping cart, invoice amount, order history, payment experiences), whether the
payment option selected by you with regard to payment and/or
bad debt risks can be granted.
The credit report may contain probability values (so-called score values).
As far as score values are included in the result of the credit report, they have their
Basis in a scientifically recognized mathematical-statistical
Procedure. The calculation of the score values includes, but is not limited to,
exclusively, address data.
You can object to this processing of your data at any time by sending us a message or
to the provider. However, the provider may still
authorized to process your personal data if this is necessary for
contractual payment processing is necessary.
9) Web analysis services
9.1 Google Tag Manager
This website uses the “Google Tag Manager”, a service provided by the following provider:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter:
“Google”).
The Google Tag Manager provides a technical basis for various
Web applications, including tracking and analysis services, and to
calibrate, control and condition a uniform user interface
The Google Tag Manager itself does not store any information on
user devices or reads them. The service also does not make any independent
However, when you visit a page, Google Tag Manager will
IP address will be transmitted to Google and stored there.
Transmission to servers of Google LLC. In the USA is possible.
This processing will only be carried out if you have given us your consent in accordance with Art. 6 (1) (a)
GDPR you have given your express consent. Without this
www.it-recht-kanzlei.de
If you give your consent, Google Tag Manager will not be used during your
You can revoke your consent at any time with effect for the
To exercise your right of withdrawal, please deactivate this service
in the “Cookie Consent Tool” provided on the website.
We have concluded a data processing agreement with the provider, which
Protection of the data of our site visitors and prevents unauthorized
Disclosure to third parties is prohibited.
For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which is based on
an adequacy decision of the European Commission, compliance with the
European data protection standards.
Further legal information about Google Tag Manager can be found at
https://business.safety.google/intl/de/privacy/ and
https://policies.google.com/privacy?hl=de&gl=de
9.2 PayPal Marketing Solutions
This website uses the web analysis service of the following provider: PayPal (Europe) S.à
rl et Cie, SCA, 22-24 Boulevard Royal, L-2449 Luxembourg
Using cookies and/or similar technologies (tracking pixels, web beacons, algorithms for reading device and browser information),
and the service stores pseudonymized visitor data, including information from the
used device such as the IP address and browser information in order to
to evaluate statistical analyses of user behavior on our website and
to create pseudonymized user profiles. This allows, among other things, the evaluation
of movement patterns (so-called heat maps) which determine the duration of
Page visits and interactions with page content (e.g. text input, scrolling,
clicks and mouse-overs). Pseudonymization excludes direct
Personal reference is generally excluded. A combination with data collected in other ways
The clear data collected about you will not be transferred.
All processing described above, in particular reading or storing
of information on the device used, are only carried out if
You have given us your express consent in accordance with Art. 6 (1) (a) GDPR
You can revoke your consent at any time with effect for the future
by deactivating this service in the “Cookie Consent Tool” provided on the website.
We have concluded a data processing agreement with the provider, which
Protection of the data of our site visitors and prevents unauthorized
Disclosure to third parties is prohibited.
www.it-recht-kanzlei.de
10) Page functionalities
Google Web Fonts
This site uses so-called web fonts for the uniform display of fonts
of the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin,
D04 E5W5, Ireland
When you visit a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly and establishes a direct connection
to the provider’s servers. This process involves certain browser information,
including your IP address, to the provider.
Data may also be transmitted to: Google LLC, USA
The processing of personal data in the course of establishing contact with
The transfer of data to the provider of the fonts will only be carried out if you have given us your consent in accordance with Art. 6 Para.
1 lit. a GDPR you have given your express consent. You can withdraw your
You can revoke your consent at any time with effect for the future by
Deactivate the service using the “Cookie Consent Tool” provided on the website.
If your browser does not support web fonts, a standard font from your
Computer used.
For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which is based on
an adequacy decision of the European Commission, compliance with the
European data protection standards.
Further information on Google’s privacy policy can be found here:
https://business.safety.google/intl/de/privacy/
11) Rights of the data subject
11.1 The applicable data protection law grants you the right to object to the processing of your personal data
regarding the processing of your personal data, the following
Rights of those affected (rights to information and intervention), whereby for the respective
The conditions for exercising the right are referred to the legal basis given:
- Right to information pursuant to Art. 15 GDPR;
- Right to rectification pursuant to Art. 16 GDPR;
- Right to erasure pursuant to Art. 17 GDPR;
- Right to restriction of processing pursuant to Art. 18 GDPR;
- Right to information pursuant to Art. 19 GDPR;
- Right to data portability pursuant to Art. 20 GDPR;
- Right to revoke consent given in accordance with Art. 7 (3) GDPR;
- Right to lodge a complaint pursuant to Art. 77 GDPR.
11.2 RIGHT OF OBJECTION
www.it-recht-kanzlei.de
IF WE PROCESS YOUR PERSONAL DATA AS PART OF A BALANCING OF INTERESTS
DATA BASED ON OUR OVERRIDING LEGITIMATE INTEREST
PROCESSING, YOU HAVE THE RIGHT AT ANY TIME TO OBJECT TO ARTIFICIAL PROPERTY FOR REASONS ARISING FROM
YOUR PARTICULAR SITUATION, OBJECTION TO THIS PROCESSING
WITH EFFECT FOR THE FUTURE.
IF YOU EXERCISE YOUR RIGHT OF OBJECTION, WE WILL END THE
PROCESSING OF THE DATA CONCERNED. FURTHER PROCESSING REMAINS, HOWEVER
RESERVED IF WE HAVE COMPELLING LEGITIMATE GROUNDS FOR THE
PROCESSING THAT OVERRIDES YOUR INTERESTS, FUNDAMENTAL RIGHTS AND
FUNDAMENTAL FREEDOMS OVERRIDE, OR IF THE PROCESSING OF THE
Assertion, exercise or defense of legal claims
SERVES.
WE PROCESS YOUR PERSONAL DATA TO
TO OPERATE DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME
AGAINST THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF
PURPOSES OF SUCH ADVERTISING. YOU CAN OBJECT TO THIS AS
EXERCISE AS DESCRIBED ABOVE.
IF YOU EXERCISE YOUR RIGHT OF OBJECTION, WE WILL END THE
PROCESSING OF THE DATA CONCERNED FOR DIRECT MARKETING PURPOSES.
12) Duration of storage of personal data
The duration of storage of personal data is determined by the
respective legal basis, the purpose of the processing and – where applicable –
additionally based on the respective statutory retention period (e.g. commercial and
tax retention periods).
When processing personal data on the basis of an explicit
Consent in accordance with Art. 6 (1) (a) GDPR, the data concerned will be stored
stored until you revoke your consent.
Are there statutory retention periods for data collected within the framework of
legal or quasi-legal obligations based on
of Art. 6 (1) (b) GDPR, these data will be deleted after the expiry of the
retention periods are routinely deleted if they are no longer required
Contract fulfilment or contract initiation are necessary and/or we do not have
legitimate interest in continued storage continues.
When processing personal data on the basis of Art. 6 (1) lit.
f GDPR, this data will be stored until you exercise your right of objection in accordance with
Art. 21 para. 1 GDPR, unless we can demonstrate compelling legitimate grounds
Demonstrate grounds for processing that override your interests, rights and freedoms
outweigh, or the processing serves to assert, exercise or
Defense of legal claims.
When processing personal data for the purpose of direct marketing on
Based on Art. 6 (1) (f) GDPR, these data will be stored until
You exercise your right of objection in accordance with Art. 21 (2) GDPR.
If the other information in this declaration provides information about specific
Unless otherwise stated in the processing situations, stored personal data
Data will be deleted when they are no longer required for the purposes for which they were collected or
otherwise processed are no longer necessary