About Us
Contacts
Kostenloser Versand bei Bestellungen ab 50 €
DE
EN
RU
Sign in account
  1. Main page
  2. Privacy Policy

Privacy Policy

Privacy Policy

This privacy policy explains the principles of processing personal data collected through the online store ariashine.de (hereinafter referred to as the "Online Store").

The administrator of personal data is Ariashine GmbH
Magstadter str. 18, 71272 Renningen. Tel.: +49 (0) 1748991983. E-Mail: [email protected]

Website: www.ariashine.de, Commercial Register: HRB 796448, VAT ID: DE 370191616, hereinafter referred to as Ariashine. Represented by Managing Directors: Kateryna Voronkina and Arsen Voronkin.

The personal data collected by Ariashine through the online store is processed in accordance with the Regulation of the European Parliament and Council (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (General Data Protection Regulation), also referred to as Ariashine.

Ariashine pays special attention to ensuring the protection of the privacy of customers visiting the online store.

I. Type of Processed Data, Purpose, and Legal Basis

1. Ariashine collects information about natural persons who engage in legal transactions not directly related to their activities, natural persons conducting business or professional activities on their own behalf, natural persons representing legal entities or organizational units without legal personality, who are granted legal capacity by law and conduct business or professional activities on their own behalf, hereinafter collectively referred to as "customers."

2. Personal information is collected in the following situations:
a) Account registration in the online store: To create and manage an individual account. Legal basis: Necessity for the performance of a service contract for account management (Art. 6 (1)(b) GDPR).

b) Order placement in the online store: To process the purchase agreement. Legal basis: Necessity for the performance of the purchase agreement (Art. 6 (1)(b) GDPR).

c) Subscription to a newsletter: To fulfill a contract concerning the provision of an electronic service. Legal basis: The consent of the data subject for fulfilling the newsletter subscription contract (Art. 6 (1)(a) GDPR).

d) Use of the contact form service: To perform a contract concerning the electronic service. Legal basis: Necessity for the performance of the contract regarding the contact form service (Art. 6 (1)(b) GDPR).

e) Use of the service for publishing a review: To perform a contract concerning the provision of an electronic service. Legal basis: Necessity for the performance of the contract for publishing a review (Art. 6 (1)(b) GDPR).

3. When registering an account, the customer provides:
a) Email address;
b) First and last name;
c) Telephone number.

4. When registering an account in the online store, the customer sets an individual password for account access. The customer can change the password later under the conditions described in §5.

5. When placing an order in our store, the customer provides the following information:
a) Email address;
b) Address details:

    1.Postal code and city;

    2. Country;

    3. Street, house number, and apartment number (if applicable).

c) First and last name;
d) Telephone number.

6. For business customers, this data is extended to include:
a) Company name;
b) Tax identification number.

7. When using the newsletter notification service, the customer provides only their email address.

8. When using the contact form service, the customer provides:
a) Email address;
b) First name.

9. When using the service for publishing a review, the customer provides:
a) Email address;
b) First name.

When using the website of the online store, additional information may be collected, including:

  1. The IP address of the customer's computer or the external IP address of the internet service provider;
  2. Domain name;
  3. Browser type;
  4. Time of access;
  5. Type of operating system.

Navigation data may also be collected, including information about links and references clicked or other activities performed within our online store. Legal basis: Legitimate interest (Art. 6 (1)(f) GDPR) to facilitate the use of electronic services and improve their functionality.

To establish, investigate, and enforce claims, certain personal data provided by the customer during the use of the online store’s features may be processed, such as:

  • First name, last name, service usage details, and other data necessary to prove the existence of the claim, including the extent of any damage incurred. Legal basis: Legitimate interest (Art. 6 (1)(f) GDPR) to establish, pursue, and defend claims in court and other legal proceedings.

Personal data provided to Ariashine is provided voluntarily in connection with concluded purchase contracts or services offered through the online store, with the reservation that if the data required during registration is not provided, it will be impossible to register and set up a customer account. Similarly, failure to provide data when placing an order without a customer account will prevent the submission and fulfillment of the customer’s order

II. To whom the data is provided and how long it is stored

1. The customer’s personal data is provided to service providers engaged in the operation of the online shop by Ariashine. The service providers to whom personal data is transferred, depending on contractual agreements and circumstances, either follow Ariashine’s instructions regarding the purposes and methods of data processing (processors) or define the purposes and methods of processing independently (controllers).
a) Processors: Ariashine uses providers that process personal data only under an Ariashine instruction. This includes providers of hosting services, accounting services, marketing system providers, systems for analyzing website traffic, systems for analyzing the effectiveness of marketing campaigns, and order fulfillment.

b) Controllers: Ariashine uses providers that do not act solely under instructions and define the goals and methods for using customers’ personal data independently. These include electronic payment service providers and banking services.

2. Location: The providers are primarily based in Poland and other countries within the European Economic Area (EEA).

3. The storage of customers’ personal data is as follows:
a) When the legal basis for the processing of personal data is consent, the personal data of the customer will be processed by Ariashine until the consent is revoked and, after revocation, for a period corresponding to the statute of limitations for claims that Ariashine may raise or that may be raised against Ariashine. Unless otherwise specified by special regulations, the statute of limitations is six years, and for claims related to periodic services and business activities, it is three years.

b) If the data processing is necessary for the performance of a contract, the customer’s personal data will be processed by Ariashine as long as it is necessary for the contract’s fulfillment and afterward for a period corresponding to the statute of limitations for claims. Unless otherwise specified by special regulations, the statute of limitations is six years, and for claims related to periodic services and business activities, it is three years.

4.For purchases made in our online shop, personal data may be transferred to courier services for the purpose of delivering the ordered goods.

5. Navigation data can be used to provide better service to customers, perform statistical data analysis, and adapt the online shop to customers’ needs, as well as for website management.

6. If the customer subscribes to a newsletter via their email address, Ariashine may also send emails with commercial information about special offers and new products.

7. In the event of a claim, Ariashine may provide personal data to the competent state authorities, particularly to the public prosecutor’s offices, police, the president of the office for personal data protection, the president of the office for competition and consumer protection, or the president of the office for electronic communications.

8. The processing of personal data is based on the following legal grounds:

  • Art. 6 (1)(a) GDPR: Consent of the data subject.
  • Art. 6 (1)(b) GDPR: Performance of a contract or pre-contractual measures.
  • Art. 6 (1)(c) GDPR: Compliance with a legal obligation.
  • Art. 6 (1)(f) GDPR: Legitimate interests of the controller or a third party.

III. The Mechanism of Cookies, IP Address

1.The online shop uses small files called cookies. If permitted by the web browser, cookies are stored on the computer of the online shop visitor by Ariashine. A cookie file typically contains the name of the domain that created the cookie, its “lifetime,” and the unique, randomly generated identifier of the respective file. The information collected through these files helps Ariashine better tailor its products to the individual preferences and actual needs of online shop visitors. They are also used to create overall statistics regarding visits to the products presented in the online shop.

2.Ariashine uses two types of cookies:
a) Session cookies: After closing the browser or shutting down the computer, the stored information is deleted from the computer's memory. The session cookie mechanism does not allow the collection of any personal or confidential data from customers' computers.

b) Persistent cookies: These are stored on the customer's device and remain there until they are deleted or expire. The persistent cookie mechanism does not allow the collection of any personal or confidential data from customers' computers.

3.Ariashine uses its own cookies to:
a) Authenticate customers within the shop and ensure a customer session (after login), so that the customer does not have to re-enter their username and password on every page.

b) Conduct studies, research, and viewership audits, particularly to create anonymous statistics, which help understand how customers use the website and enable improvements in its structure and content.

4.The cookie mechanism is secure for the computers of online shop customers. In particular, it is not possible for viruses or other unwanted software (malware) to enter customers’ computer systems via this method. However, customers can restrict or disable access to cookies on their computers through their web browsers. If this option is enabled, using the online shop remains possible, except for functions that require cookies by their nature.

5.Below are instructions for changing cookie settings in popular web browsers:
a) Internet Explorer;
b) Microsoft Edge;
c) Mozilla Firefox;
d) Chrome;
e) Safari;
f) Opera.

6.Ariashine may collect customers' IP addresses. The IP address is a number assigned to the online shop visitor’s computer by the internet provider. The IP number enables internet access. In most cases, it is dynamically assigned to a computer, meaning it changes with each internet connection and is therefore generally not considered personal identification information. Ariashine uses IP addresses to diagnose technical problems with the server, perform statistical analyses (e.g., determining the regions from which most visits originate), and as information useful for managing and improving the online shop. It is also used for protection and identification of unwanted, automated programs that burden the server and crawl the shop’s content.

7.The online shop contains links and references to other websites. Ariashine is not responsible for the data protection policies applicable on those sites.

IV. Rights of the Data Subjects

1.Right to withdraw consent - Legal basis: Art. 7(3) GDPR.
a) The customer has the right to withdraw the consent given to Ariashine.

b) The withdrawal of consent becomes effective from the moment the withdrawal is made.

c) The withdrawal of consent does not affect the processing that we carried out before the withdrawal in accordance with the law.

d) The withdrawal of consent does not have negative consequences for the customer but may prevent further use of services or functionalities that require valid consent according to Ariashine's regulations.

2.Right to object to data processing - Legal basis: Art. 21 GDPR.
a) The customer has the right to object at any time, for reasons related to their particular situation, to the processing of their personal data, including profiling, when Ariashine processes their data based on a legitimate interest, such as Ariashine products and services, statistics regarding the use of the online shop’s functionalities, and facilitating its use or conducting customer satisfaction surveys.

b) The withdrawal from receiving marketing messages related to products or services via email constitutes the customer's objection to the processing of their personal data, including profiling for these purposes.

c) If the customer's objection is justified and Ariashine has no other legal basis for processing personal data, the personal data against which the customer has objected will be deleted.

3.Right to erasure of data (“right to be forgotten”) - Legal basis: Art. 17 GDPR.
a) The customer has the right to request the deletion of all or some personal data.

b) The customer has the right to request the deletion of personal data when:

  • 1. The personal data is no longer necessary for the purposes for which it was collected or processed.
  • 2.They have withdrawn their consent to the extent that the data was processed based on their consent.
  • 3.They have objected to the use of their personal data for marketing purposes.
  • 4.The personal data was processed unlawfully.
  • 5.The personal data must be removed to comply with legal obligations under EU law or the law of the member state to which Ariashine is subject.
  • 6.The personal data was collected in connection with the offering of information society services.

c) Despite the request for deletion of personal data, in relation to the objection or withdrawal of consent, Ariashine may retain certain personal data to the extent that processing is necessary to establish, investigate, or defend claims and fulfill legal obligations to process data under EU law or the law of the member state to which Ariashine is subject. This applies particularly to personal data such as: first name, last name, email address, and data necessary to handle complaints and claims related to the use of Ariashine services, or additionally, address, order number, and data necessary for handling complaints and claims from completed purchase or service agreements.

4.Right to restriction of data processing - Legal basis: Art. 18 GDPR.
a) The customer has the right to request a restriction on the processing of their personal data. Submitting a request prevents the use of certain functions or services that involve processing the data covered by the request until the request is reviewed. Ariashine will not send messages, including marketing messages, during this time.

b) The customer has the right to request a restriction on the use of personal data in the following cases:

  • 1.When the accuracy of their personal data is questioned, Ariashine will limit its use for the time necessary to verify the accuracy of the data, but not longer than seven days.
  • 2.When the data processing is unlawful, and instead of deleting the data, the customer requests a restriction of its use.
  • 3.When personal data is no longer necessary for the purposes for which it was collected or used, but it is required by the customer to establish, investigate, or defend claims.
  • 4.When the customer objects to the use of their data — the restriction applies during the time necessary to determine whether, due to the particular situation, the protection of the customer’s interests, rights, and freedoms outweighs the interests of the data controller in processing the personal data.
  • 5.Right of access to data - Legal basis: Art. 15 GDPR.

a) The customer has the right to obtain confirmation from the controller as to whether personal data concerning them is being processed. If it is, the customer has the right to:

  • 1.Access their personal data.
  • 2.Obtain information about the purposes of processing, the categories of personal data processed, the recipients or categories of recipients of the data, the planned retention period of customer data or criteria for determining this period (if the retention period cannot be specified), the customer's rights under GDPR, the right to lodge a complaint with the supervisory authority, the source of the data, any automated decision-making, including profiling, and the guarantees in place regarding the transfer of the data outside the European Union.
  • 3.Obtain a copy of their personal data.

6.Right to rectification of data - Legal basis: Art. 16 GDPR.
a) The customer has the right to request that incorrect data be corrected by the controller. Considering the purposes of the processing, the data subject has the right to request the completion of incomplete personal data, including by submitting an additional statement via a request sent to the email address specified in the privacy policy.

7.Right to data portability - Legal basis: Art. 20 GDPR.
a) The customer has the right to receive the personal data they have provided to the controller and transfer it to another data controller of their choice. The customer also has the right to request that personal data be sent directly by us to the other controller if technically feasible. In this case, the controller will send the customer’s personal data in the form of a file in CSV format, a commonly used, machine-readable format that allows the received data to be transferred to another controller.

8.In cases where the customer requests the exercise of their rights under the provisions above, Ariashine will either fulfill or refuse the request promptly and no later than within one month of receipt. However, if the complexity of the request or the number of requests makes it impossible to meet the deadline, Ariashine will fulfill the request within the next two months and inform the customer within one month of receiving the request about the extension of the deadline and the reasons for it.

9.The customer can submit complaints and requests to the controller regarding the processing of their personal data and the exercise of their rights.
10. The customer is entitled to request a copy of the standard contractual clauses from Ariashine by submitting a request in the manner specified in the privacy policy.
11. The customer has the right to lodge a complaint with the President of the Office for Personal Data Protection regarding any violation of their right to the protection of personal data or other rights granted by GDPR.

V. Security Management - Password

Ariashine provides customers with a secure and encrypted connection for sending personal data and logging into the customer account on the website. Ariashine uses an SSL certificate issued by one of the world's leading companies in the field of internet data security and encryption.
If the customer loses access to their account password, the store allows them to generate a new password. Ariashine does not send password reminders. The password is stored in encrypted form, making it unreadable. To generate a new password, the customer provides their email address in the "Forgot Password" form in the store's login section. The customer will receive an email at the address provided during registration or last account update, containing a link to a dedicated form on the store's website, where the customer can set a new password.
Ariashine never sends correspondence, including emails, requesting login details, especially the customer account password.

VI. Changes to the Privacy Policy

The privacy policy may be amended. Ariashine will inform its customers of any changes 7 days in advance.
Any questions regarding this privacy policy should be directed to: [email protected]
Date of last modification: January 19, 2025.

 

Contact us
Information
About Us
Contacts
Terms and Conditions
Privacy Policy
Legal Notice
Shipping & Payment Methods
Right of withdrawal
News
ARIASHINE@2020
Developed by GTS agency