Many customers entrust us with personal data every day. We consider it part of our responsibility to protect the information and data entrusted to our company. At hubertusloden, data protection principles (in accordance with the legal provisions of the EU General Data Protection Regulation – GDPR – and the German Federal Data Protection Act – BDSG) such as transparency, data minimization, and security are our highest priority.
All information applies to use via smartphones, tablets, computers, and all other internet-connected devices, whether mobile or stationary. Please read the hubertusloden GmbH privacy policy carefully.
This privacy policy applies to the following services:
Online Shop
If you have the option to enter personal data in our online shop, please decide for yourself to what extent you are willing to provide such information. To process your order or inquiry, we require the completion of mandatory fields marked as necessary for processing. All other collected data are voluntary and will only be used for statistical purposes or to optimize our services. If required information is missing, we may not be able to provide our services.
Controller and Contact Person
If you have any questions or wish to exercise your rights, please contact:
Billing and payment details (account information, etc.)
Telephone and fax number
Date of birth (if applicable)
This also includes usage data, such as information about the time of your visit to our website, the browser you use, and other data generated during your visit.
It may also include:
the contents of your shopping cart
your orders
other personal information and inquiries
We collect, use, and store your personal data only for the purpose of providing the service you requested or processing your order in accordance with legal requirements or based on your separately granted consent where applicable.
If we request your consent, this will be clearly highlighted in our shop. You may revoke your consent at any time with future effect by contacting:
Personal data you provide will be stored in accordance with tax and commercial legal retention periods (usually ten years after conclusion of the contract) or for possible contractual warranty claims and will be deleted as soon as they are no longer required for their intended purpose.
Your Rights
As a data subject, you have the right to exercise your rights with us at any time. Provided the relevant legal requirements are met, these include the following rights.
Right of Access and Data Portability
According to Article 15 GDPR, the data subject has the right to access information.
According to Article 20 GDPR, the data subject has the right to data portability.
You have the right at any time to obtain information free of charge about the personal data we store about you. You also have the right to have the data you provided transferred to yourself or a third party.
If you would like to receive information about your stored data or request data transfer, please contact:
Please note that data can only be transferred based on consent or a contractual basis. We reserve the right to process requests that are submitted excessively often or without proper proof of identity. We will contact you in writing regarding such matters.
Restriction, Correction and Deletion
According to Article 18 GDPR – Right to Restriction
According to Article 16 GDPR – Right to Rectification
According to Article 17 GDPR – Right to Erasure
If you wish to block, delete, or correct the data stored about you, provided this does not conflict with legal requirements (such as statutory retention obligations under the German Commercial Code), please contact:
You can also view, modify, and delete your data at any time in the “My Account” section using your email address and password.
Right to Withdraw Consent
According to Article 21 GDPR, you have the right to object or withdraw consent.
You may withdraw your consent to the processing of your personal data, including consent to use your data for advertising purposes, at any time by sending a brief written notice to:
To unsubscribe from the newsletter, you will find a corresponding link at the end of each newsletter.
Right to Lodge a Complaint with a Supervisory Authority
According to Article 77 GDPR, you have the right to lodge a complaint with a supervisory authority.
Data Security and Disclosure to Third Parties
If you register with us as a customer, access to your customer account is possible only after entering your personal password.
We take data protection very seriously. Our employees and commissioned service providers are obliged to comply with data protection regulations and maintain confidentiality.
We take the utmost care to protect your personal data against unauthorized access or loss of data. However, data transmission over the internet (e.g., via email communication) may contain security vulnerabilities.
Our website uses SSL or TLS encryption to protect the transmission of personal data and other confidential content.
Your data will not be shared with third parties without your explicit consent. The only exceptions are service partners required to process contractual relationships or service providers used for order processing.
These include recipients in the following categories:
shipping service providers
payment service providers
web hosting providers
IT service providers
In all cases we strictly comply with legal requirements and limit the scope of data transfer to the minimum necessary.
Contact, Consultation and Orders
When you contact us by email, personal data are collected. These data are stored and used to process your inquiry or for contact purposes and related technical administration.
The legal basis for processing your data is our legitimate interest in responding to your inquiry in accordance with Article 6(1)(b) GDPR.
If your contact aims at concluding a contract, the additional legal basis for processing is Article 6(1)(b) GDPR.
To complete your order in our online shop or by telephone, we require your personal data. Order processing includes:
receiving orders
sending electronic order confirmations
delivery confirmations
invoices
processing your selected payment method
The legal basis for this processing is Article 6(1)(b) GDPR, meaning the processing is necessary for the contractual relationship between you and hubertusloden GmbH.
When you register in our online shop, the necessary data are stored based on Article 6(1)(b) GDPR. You may modify or delete your profile at any time in your customer account.
If there are no statutory retention periods or the data are no longer required, they will be deleted from the system.
Payment Data
In our shop you may pay by:
invoice
prepayment
PayPal
credit card
When paying by prepayment or invoice through the online shop, we do not receive your payment details directly.
Payment Portal
Invoice, Prepayment, or Credit Card
For payments by invoice, prepayment, or credit card, payment data are transmitted to:
Mollie BV
Keizersgracht 126
1015 CW Amsterdam
Netherlands
The transfer takes place in accordance with Article 6(1)(b) GDPR and only to the extent necessary for payment processing.
Mollie transactions are subject to the Mollie privacy policy:
If delivery is carried out by DHL Vertriebs GmbH, Charles-de-Gaulle-Straße 20, 53113 Bonn, we transmit the recipient’s name and delivery address solely for delivery purposes in accordance with Article 6(1)(b) GDPR.
DPD
If delivery is carried out by DPD Deutschland GmbH, Wailandtstraße 1, 63741 Aschaffenburg, we transmit the recipient’s name and delivery address solely for delivery purposes in accordance with Article 6(1)(b) GDPR.
Use of Email Address for Newsletters
Your email address will only be used for our own advertising purposes for sending newsletters if you have expressly consented.
Processing takes place according to Article 6(1)(a) GDPR based on your consent.
You may withdraw this consent at any time. You can unsubscribe via the link in the newsletter or by contacting us.
Your email address will then be removed from the mailing list.
Data Transfers to Third Countries
Personal data may occasionally be transferred to countries outside the EU (e.g., Google or Facebook). In such cases we ensure an appropriate level of data protection. The scope of processing and protective measures are described within the respective services.
Cookies
Our website uses cookies. Cookies are small text files stored by the internet browser on a user’s computer system.
When visiting a website, a cookie may be stored in the user’s operating system containing a characteristic string that allows the browser to be uniquely identified upon returning to the website.
Cookies help make our website:
more user-friendly
more efficient
more secure
Some website functions cannot be offered without cookies.
We also use cookies to analyze visitor browsing behavior.
Processing is carried out based on §15(3) TMG and Article 6(1)(f) GDPR due to our legitimate interest in improving our website.
Collected data are pseudonymized using technical measures and cannot be directly assigned to a specific person.
Cookies are stored on your computer, so you have full control over their use. You can disable cookies through your browser settings or delete stored cookies at any time.
However, doing so may limit some website functionality.
Information on cookie management for major browsers:
