Welcome to our online shop

Trusted Shops: Simply shop safely

We offer transparency and security with Trusted Shops

Privacy Policy

As of October 15, 2025

This privacy policy informs you about the processing of personal data when you visit and use our online shop. It covers, in particular, hosting, order, payment and shipping processing, analysis and marketing services, newsletters, social media, and your rights as a data subject.

1. Controller (Art. 4 No. 7 GDPR)

Schweighöfer Gate Technology
Owner: Daniel Schweighöfer
Heinrich-Wieland-Straße 21
55218 Ingelheim am Rhein
Germany

Telephone: +49 6132 4368461
Email: info@schweighoefer-tortechnik.de
(Alternatively for orders: shop@schweighoefer-tortechnik.de) )

2. Principles, purposes and legal basis

We process personal data exclusively within the framework of legal requirements (GDPR, BDSG, TTDSG).

Legal basis:

  • Article 6 paragraph 1 letter b GDPR – Contract / Contract initiation (orders, delivery, support, returns)

  • Article 6 paragraph 1 letter a GDPR – Consent (newsletter, tracking, marketing cookies)

  • Article 6 paragraph 1 letter f GDPR – legitimate interest (IT security, economic operation)

  • Article 6 paragraph 1 letter c GDPR – legal obligations (tax and retention obligations)

3. Provision of the website & log files

When you access our website, technically necessary data is processed (e.g. IP address, date/time, browser, operating system, referrer URL).

Purpose: technical delivery, stability, safety
Legal basis: Art. 6 para. 1 lit. f GDPR
Storage duration: typically 7–30 days

4. Hosting & Shop Platform

Our online shop is operated via an e-commerce platform (e.g., Shopify).

All data generated in the shop (orders, customer account, forms) is processed.
A data processing agreement exists with the provider.

Data may be transferred to third countries (e.g., Canada/USA). See section 13 for appropriate safeguards.

5. Cookies & Consent Management

We use cookies and similar technologies.

  • Necessary cookies : for shopping cart, checkout, security

  • Optional cookies (analytics/marketing): only with consent

Legal basis:
§ 25 TTDSG, Art. 6 Paragraph 1 Letters a, c, f GDPR

Consent is logged via a consent banner.
You can withdraw your consent at any time via the cookie settings.

6. Customer account, orders & communication

6.1 Customer account

Processing of master data, login data (encrypted), order history.
Legal basis: Art. 6 para. 1 lit. b GDPR

6.2 Order & Contract

Processing of name, address, email, payment and shipping data.
Legal basis: Art. 6 para. 1 lit. b GDPR

6.3 Communication

Contact us via email, form or telephone.
Legal basis: Art. 6 para. 1 lit. b and f GDPR

7. Payment processing & fraud prevention

Depending on the payment method, data is transmitted to payment service providers (e.g. Shopify Payments, PayPal, Klarna, Stripe).

Legal basis: Art. 6 para. 1 lit. b GDPR
Payment service providers sometimes act independently.

8. Shipping processing & drop shipping

For delivery purposes, we will forward the necessary data (name, address, email/phone for notification) to our shipping and logistics partners.

Legal basis: Art. 6 para. 1 lit. b GDPR

9. Newsletter & Direct Marketing

9.1 Newsletter

Shipping only after double opt-in .
Legal basis: Art. 6 para. 1 lit. a GDPR
You can unsubscribe at any time.

9.2 Newsletter Tracking

This will only happen with consent .
Legal basis: Art. 6 para. 1 lit. a GDPR

9.3 Customer Retention

Email advertising for similar products in accordance with Section 7 Paragraph 3 of the German Unfair Competition Act (UWG).
Legal basis: Art. 6 para. 1 lit. f GDPR
No tracking as part of existing customer acquisition.

10. Analysis & Marketing

Analysis and marketing tools (e.g., Google Analytics 4, Google Ads, Meta-Pixel, TikTok, LinkedIn, Pinterest, Microsoft Ads) are only loaded after consent has been given .

Legal basis: Art. 6 para. 1 lit. a GDPR

11. Google reCAPTCHA

To protect against abuse, we use Google reCAPTCHA.

Legal basis:
Art. 6 Paragraph 1 Letter a GDPR i. V. m. § 25 TTDSG

reCAPTCHA is only activated after consent has been given via the consent banner .

12. Storage duration

  • Contract and invoice data: 6–10 years (German Commercial Code/German Fiscal Code)

  • Customer account: until deletion

  • Newsletter: until further notice

  • Log files: 7–30 days

13. Social media presence

We maintain profiles on social networks (e.g. Instagram, Facebook, LinkedIn, YouTube).

Joint controllership may exist pursuant to Article 26 GDPR .
The respective platform operators provide information on this in their privacy policies.

14. Transfers to third countries

For data transfers outside the EU/EEA, we use:

  • Adequacy decisions (e.g. EU-US DPF)

  • EU Standard Contractual Clauses (SCCs)

15. Minors

Our services are generally aimed at adults .

16. Your rights

You have the right to:

  • Right of access (Art. 15 GDPR)

  • Rectification (Art. 16 GDPR)

  • Erasure (Art. 17 GDPR)

  • Restriction (Art. 18 GDPR)

  • Data portability (Art. 20 GDPR)

  • Right to object (Art. 21 GDPR)

  • Withdrawal of consent (Art. 7 GDPR)

Right to lodge a complaint with the competent supervisory authority.

17. Data Protection Officer

A data protection officer has not been appointed at present, as there is no legal obligation to do so.

18. Changes to this Privacy Policy

We reserve the right to amend this privacy policy in the event of legal or technical changes. The current version is always authoritative.

Back to top