Politique de confidentialité

Last updated: October 2, 2024

Feuerstein Essentials Switzerland GmbH, Via Maistra 1, 7500 St. Moritz, Switzerland, is the operator of the website www.feuerstein-essentials.ch (the operator is therefore referred to below as "Feuerstein" or "we") and is responsible under data protection law for the data processing described below. This privacy policy covers all aspects of data protection law

your visit to our website www.feuerstein-essentials.ch ("Website") and
of purchases made via the website.

Thank you for your interest in our products. Below we provide you with comprehensive information on how we process your data and what rights you have in this regard. The protection of your privacy is very important to us and we would like to inform you accordingly about your rights and options in order to promote a trusting business relationship in the long term. Our data protection practices are in accordance with the EU General Data Protection Regulation ("GDPR") in conjunction with Article 13 of the Swiss Federal Constitution and the data protection provisions of the Swiss Confederation (Data Protection Act, DSG), as well as other relevant legal provisions.

The scope of this privacy policy is based on the definition of the GDPR. This means that the "processing" of personal data essentially includes any handling of the same. Insofar as data processed by us relates to a natural person and - even if only via third parties, in a synopsis or by means of additional knowledge - makes this person identifiable (in particular allows their full name to be found out), this is personal data.

1. data processing operations in the context of the use of our website

1.1 Visiting our website

You can visit our website without having to provide any personal details. As a mere website visitor, you can therefore inform yourself about our offers and activities without obligation, without us being able to link such data to your person. Automatically processed data does not allow us to draw any conclusions about your person; however, IP addresses in particular are considered personal data within the meaning of the GDPR.

Server log files (access data)

For technical reasons, in particular to ensure a functional and secure Internet presence, we process technically necessary data about access to our website in so-called server log files, which your browser automatically transmits to us.

The access data that we process includes

Name of the website accessed
Browser type used incl. version
Operating system used by the visitor
the page previously visited by the visitor (referrer URL)
Time of the server request
Amount of data transferred
Host name of the accessing computer (IP address used)

This data is not assigned to any natural persons and is only used for statistical evaluations and for the operation and improvement of our website as well as for the security and optimization of our Internet offer. This data is only transmitted to our website operator. This data is not combined or merged with other data sources. If there is any suspicion of unlawful use of our website, we reserve the right to check this data retrospectively. The data processing is based on our legitimate interest in the technically error-free presentation and optimization of our website in accordance with Art. 6 para. 1 lit. f GDPR. The access data is deleted shortly after the purpose has been fulfilled, usually after a few days, unless further storage is required for evidence purposes. Otherwise, the data will be stored until an incident has been finally clarified.

Hosting

As part of the hosting of our website, all data to be processed in connection with the operation of our website is stored. This is necessary to enable the operation of the website. We therefore process the data accordingly on the basis of our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR in the optimization of our website offer. To provide our online presence, we use the services of web hosting providers to whom we make the above-mentioned data available as part of order processing in accordance with Art. 28 GDPR.

1.2 Non-binding inquiries/requests within the scope of the website visit

Contact us

When you contact us, your data will be used to process the contact request and its handling as part of the fulfillment of pre-contractual rights and obligations in accordance with Art. 6 para. 1 lit. b GDPR. The processing of your data is necessary for processing and answering your request, otherwise we will not be able to answer your request or only to a limited extent. The data may be stored in a customer and prospect database on the basis of our legitimate interest in direct marketing pursuant to Art. 6 para. 1 lit. f GDPR. For the collection, storage and processing of your data and for responding to your inquiries, we use external processors with whom we have concluded data processing agreements in accordance with Art. 28 (3) GDPR and who offer sufficient guarantees for lawful and secure data processing.

1.3 Data processing when you become our customer and wish to purchase products

If you wish to purchase our goods and/or use our services, you must provide certain information in order to process the contract. You can create a central customer account for this purpose, but you can also place an order without a customer account. When purchasing a product without creating a customer account, you must provide the following personal data:

(a) First name, last name
(b) Email address
(c) Delivery address, billing address

This information is required by us in order to fulfill the contract concluded with us (Art. 6 para. 1 lit. b GDPR). Additional information, such as your telephone number, is provided voluntarily by you. The data is also stored by us, whereby we only store it for as long as we reasonably deem necessary to achieve the purpose of fulfilling the contract and as permitted by applicable law. In any case, we store personal data for as long as statutory retention obligations exist or limitation periods for potential legal claims have not yet expired.

On our website or in our online store, you also have the option of registering for our central customer account in order to facilitate the process for future ordering processes. The only mandatory information required for this is your full name, your e-mail address and your postal billing and delivery address. Additional information, such as your telephone number, is provided voluntarily by you. The processing in this regard is based on your explicit consent to this data processing (Art. 6 para. 1 lit. a GDPR). We only process the information you enter within Feuerstein; third parties do not gain knowledge of your registration data.

In the case of returns of products (in particular when exercising the right of withdrawal), we sometimes use processors to whom we disclose your full name and postal address for returns. We have also concluded sufficient data processing agreements with these processors.

1.4 Use of cookies in general

We use cookies to make our website more user-friendly and functional. Some cookies remain stored on your end device.

cookies are small data packets that are exchanged between your browser and the web server when you visit our website. They do not cause any damage and are only used to recognize the website visitor. The next time you visit our website with the same end device, the information stored in cookies may subsequently be sent back either to us ("first-party cookie") or to a third-party web application to which the cookie belongs ("third-party cookie"). Through the stored and returned information, the respective web application recognizes that you have already accessed and visited the website with the browser of your end device. We use this information to optimize the design and display of our website according to your preferences. Any further processing of personal data will only take place with your express consent in accordance with Art. 6 para. 1 lit. a GDPR or if this is absolutely technically necessary in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in order to be able to use the service you have called up accordingly.

Cookies contain the following information:

Name of the cookie
Name of the server from which the cookie originates
ID number of the cookie
An end date after which the cookie is automatically deleted

Depending on their intended use and function, we divide cookies into the following categories:

Technically necessary cookies to ensure the technical operation and basic functions of our website. (e.g. to be able to access protected areas of the digital presence). These are so-called session or connection cookies.
Statistics cookies to understand how visitors interact with our website by collecting and analyzing information anonymously. These are also used to measure reach and access, as well as to analyze which offers are accessed and how often.
Marketing cookies to analyze your usage behavior and to set targeted and personalized advertising activities based on your interests.

The legal basis for the use of technically necessary cookies is based on our legitimate interest in the technically flawless operation and smooth functionality of our website in accordance with Art. 6 para. 1 lit. f GDPR. The use of statistics and marketing cookies requires your consent in accordance with Art. 6 para. 1 lit. a GDPR.

For more information on the cookies we actually use, in particular the purpose and storage period, please refer to this privacy policy and the details on the cookies used. You can revoke your consent to the use of cookies at any time for the future in accordance with Art. 7 para. 3 GDPR. You can also set your Internet browser so that the storage of cookies on your device is generally prevented or you are asked each time whether you agree to the setting of cookies. Once cookies have been set, you can delete them at any time. You can find out how all this works in detail in the help function of your browser.

Most browsers accept cookies automatically. However, you have the option of adjusting your browser settings so that cookies are either generally rejected or only certain types are permitted (e.g. restriction of refusal to third-party cookies). However, if you change your browser's cookie settings, you may no longer be able to use our website to its full extent. The setting options for the most common browsers can be found under the following links:

Internet Explorer™: http://windows.microsoft.com/de-at/windows-vista/Block-or-allow-cookies
Edge™: https://support.microsoft.com/de-at/help/4468242/microsoft-edge-browsing-data-and-privacy-microsoft-privacy
Safari™: https://www.giga.de/downloads/apple-safari/tipps/cookies-in-safari-aktivieren-blockieren-loeschen-so-gehts/
Chrome™: http://support.google.com/chrome/bin/answer.py?hl=de&hlrm=en&answer=95647
Firefox™: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen
Opera™: https://help.opera.com/de/latest/web-preferences/

Please note that generally deactivating cookies may lead to functional restrictions on our website.

1.5 Use of tools and plugins on our website

Since the use of technically unnecessary cookies (see point 1.4) and the general storage of technically unnecessary information in your end device or access to such information that is already in your end device requires your consent, you will be asked when accessing our website whether and which cookies we may specifically use. Since the tools/plugins listed below also function or work at least partially in this way, they are also only used with your consent within the meaning of Art. 6 (1) GDPR. You have the option of making individual settings in the cookie mask when accessing the website.

Data transfer to the USA / elimination of the Privacy Shield

We would like to expressly point out that as of July 16, 2020, due to a legal dispute between a private individual and the Irish supervisory authority, the so-called "Privacy Shield", an adequacy decision of the EU Commission pursuant to Art 45 GDPR, with which the USA was confirmed to have an adequate level of data protection under certain circumstances, is no longer valid with immediate effect.

The Privacy Shield is therefore no longer a valid legal basis for the transfer of personal data to the USA!

If we transfer data to the USA at all or if we use a service provider based in the USA, we explicitly refer to this in this privacy policy (see in particular the description of the technologies on our website).

What can the transfer of personal data to the USA mean for you as a user and what are the risks in this context?

Risks for you as a user are in any case the powers of the US intelligence services and the legal situation in the USA, which, according to the ECJ, currently no longer ensure an adequate level of data protection. These include the following points:

Section 702 of the Foreign Intelligence Surveillance Act (FISA) provides no restrictions on the surveillance activities of the intelligence agencies and no safeguards for non-US citizens.
Presidential Policy Directive 28 (PPD-28) does not provide affected persons with effective legal remedies against measures taken by the US authorities and does not provide for any limits to ensure proportionate measures.
the ombudsman provided for in the Privacy Shield does not have sufficient independence from the executive; he cannot issue binding orders to the intelligence services.

Legally compliant transfer of data to the USA on the basis of the standard contractual clauses?

The standard contractual clauses adopted by the Commission in 2010 (2010/87/EU of February 5, 2010), Art. 46 para. 2 c GDPR, are still valid, but a level of protection for personal data must be ensured that corresponds to that in the European Union. Therefore, not only the contractual relationships with our service providers are relevant here, but also the possibility of access to the data by authorities in the USA and the legal system there (legislation and jurisdiction, administrative practice of authorities).

The standard contractual clauses cannot bind authorities in the USA and therefore do not provide adequate protection in cases where the authorities are authorized under US law to interfere with the rights of data subjects without additional action by us and our service provider.

Legally compliant transfer of data to the USA based on your consent?

It is currently disputed whether informed consent and thus a deliberate and knowing restriction of parts of your fundamental right to data protection is legally possible at all.

What measures do we take to ensure that data transfers to the USA are legally compliant?

Where US providers offer the option, we choose to process data on EU servers. This should technically ensure that the data is located within the European Union and cannot be accessed by US authorities.

We are also carefully examining European alternatives to the US tools used. However, this is a process that does not happen overnight, as it also has technical and economic consequences for us. Only if the use of European tools and/or the immediate shutdown of US tools is impossible for us for technical and/or economic reasons will we continue to use US service providers.

We take the following measures for the continued use of US tools:

Where possible and not already required by law (e.g. FATCA), your consent will be requested before using a US tool and you will be informed transparently in advance about how a service works. The risks of transferring data to the USA can be found in this section.

We endeavor to conclude standard contractual clauses with US service providers and demand additional guarantees. In particular, we require the use of technologies that make access to data impossible, e.g. the use of encryption that cannot be broken even by US services or
anonymization or pseudonymization of the data, where only the service provider can make the assignment. At the same time, we require additional information from the service provider if data is actually accessed by third parties or that the service provider exhaust all legal remedies until access to data is granted at all.

Facebook pixel

Purpose: Marketing
Recipient country: USA

Our website uses the Facebook pixel service of the social network Facebook, which is operated by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Facebook"), for the analysis, optimization and economic operation of our online offering.

ATTENTION: In the context of this service, data is transferred to the USA or such a transfer cannot be ruled out. We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of data protection for data transfer to the USA and that there are therefore various risks (such as possible access by US intelligence services).

With the help of Facebook pixels, Facebook is able to determine the visitors to our website as a target group for the display of ads (so-called "Facebook ads"). Accordingly, we use Facebook pixels to display the Facebook ads placed by us only to those Facebook users who have also shown an interest in our online offering or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited) that we transmit to Facebook (so-called "custom audiences"). With the help of Facebook pixels, we also want to ensure that our Facebook ads correspond to the potential interest of users and are not annoying. With the help of Facebook pixels, we can also track the effectiveness of Facebook ads for statistical and market research purposes by seeing whether users were redirected to our website after clicking on a Facebook ad (so-called "conversion").

Your actions are stored in one or more cookies. These cookies enable Facebook to match your user data (such as IP address, user ID) with the data of your Facebook account. The data collected is anonymous and not visible to us and can only be used in the context of advertisements. You can prevent the link to your Facebook account by logging out before taking any action.

The processing of your data is based on your consent within the meaning of Art. 6 para. 1 lit. a GDPR. You can revoke this consent at any time with effect for the future.

For more information on how Facebook processes personal data, including the legal bases on which Facebook relies and the options for exercising data subjects' rights vis-à-vis Facebook, please refer to Facebook's data policy at https://de-de.facebook.com/policy.php

To set which types of ads are displayed to you within Facebook, you can go to the page set up by Facebook and follow the instructions on the settings for usage-based advertising: https://www.facebook.com/settings?tab=ads

The settings are platform-independent, i.e. they are adopted for all devices, such as desktop computers or mobile devices.

General information on the display of Facebook ads can be found at: https://de-de.facebook.com/policy.php

Specific information and details about Facebook Pixel and how it works can be found in the Facebook help section: https://de-de.facebook.com/business/help/651294705016616

Google Analytics

Purpose: Statistics
Recipient country: USA

On our website, we use the functions of the web analysis service Google Analytics to analyze user behavior and to optimize our website. The provider of this service is Google Ireland Limited, Barrow Street, Dublin 4, Ireland ("Google").

Google Analytics uses cookies that enable us to analyze the use of our website.

Information about the use of the website such as browser type/version, operating system used, the previously visited page, host name of the accessing computer (IP address), time of the server request are usually transmitted to a Google server and stored there. We have concluded a contract with Google for this purpose.

Google will use this information on our behalf to evaluate the use of our website, to compile reports on the activities within our website and to provide us with further services associated with the use of our website and the Internet. According to Google, the IP address transmitted by your browser will not be merged with other Google data.

We only use Google Analytics with activated IP anonymization by adding the code "anonymizeIP" to this website. This guarantees that your IP address is masked so that all data is collected anonymously. Only in exceptional cases is the full IP address transmitted to a Google server and truncated there.

During your visit to the website, the following data is collected, among others:

the pages you have accessed, your "click path"
Achievement of "website goals" (conversions, e.g. newsletter registrations, downloads, purchases)
Your user behavior (e.g. clicks, dwell time, bounce rates)
Your approximate location (region)
Your IP address (in abbreviated form)
technical information about your browser and the end devices you use (e.g. language setting, screen resolution)
Your Internet provider
the referrer URL (via which website/advertising medium you came to our website)

The data on the use of our website will be deleted immediately after the end of the retention period set by us. Google Analytics gives us the following options for the retention period: 14 months, 26 months, 38 months, 50 months, do not delete automatically. You can ask us at any time about the retention period we have currently set.

The processing of your data with the help of Google Analytics is based on your express consent within the meaning of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time with effect for the future.

In addition, you can prevent the collection of data by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout

Here you can find out exactly where Google data centers are located: https://www.google.com/about/datacenters/inside/locations/

Further information on the use of data by Google, setting and objection options, can be found in Google's privacy policy at https://policies.google.com/privacy

The data processing conditions for Google products and the standard contractual clauses for data transfer to third countries can be found at https://business.safety.google/adsprocessorterms/

Google Fonts

Purpose: External media
Recipient country: USA

Our website uses so-called web fonts provided by Google for the uniform display of fonts. Google Fonts is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google").

To display web fonts from Google, the browser you are using must connect to Google's servers. As a result, Google becomes aware that our website has been accessed via your IP address. Google also stores the IP address of the browser of the end device of the visitor to our website. If your browser does not support web fonts, a standard font will be used by your device.

Each Google Font request automatically transmits information such as language settings, screen resolution, version and browser name to Google servers in addition to the IP address. Google can use the collected usage data to determine the popularity of fonts. Google publishes the results on internal analysis pages (e.g. Google Analytics).

With Google Fonts, we can use fonts on our own website and do not have to upload them to our server. Google Fonts is an important component in keeping the quality of our website high. All Google fonts are automatically optimized for the web, which saves data volume and is a great advantage, especially when using mobile devices. When you visit us, the low file size ensures a fast loading time. Furthermore, Google Fonts are secure web fonts and support all common browsers.

Google stores requests for CSS assets on its servers for one day. This enables us to use the fonts with the help of a Google stylesheet. The font files are stored by Google for one year. To delete data prematurely, you must contact Google support ( https://support.google.com ).

Your data will only be processed with your express consent in accordance with Art. 6 para. 1 lit. a GDPR.

Here you can find out exactly where Google data centers are located: https://www.google.com/about/datacenters/inside/locations/

Further information on Google Fonts can be found at https://developers.google.com/fonts/faq and in Google's privacy policy: https://policies.google.com/privacy

The data processing conditions for Google products and the standard contractual clauses for data transfer to third countries can be found at https://business.safety.google/adsprocessorterms/

Google Maps

Purpose: External media
Recipient country: USA

The Google Maps service is integrated on our website in order to better display geographical information about locations for users. The provider of this service is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google").

Google Maps is an online map service that makes geographical information easier to read for you as a user via an end device. Among other things, directions are displayed or map sections of a location can be integrated into a website.

If you agree to Google Maps, your browser will establish a connection to Google's servers. This gives Google knowledge that our website has been accessed via your IP address. The use of Google Maps enables Google to collect and process data about the use of the service.

To provide this service, Google Maps processes your IP address, search terms entered and latitude and longitude coordinates, among other things, on the basis of your consent. If you use the route planner function of Google Maps, the starting address entered will also be saved. This data processing takes place exclusively through your voluntary use of Google Maps and is not within our sphere of influence.

We would like to point out that Google (currently) sets a settings cookie called "NID" when this service is executed. Google Maps does not currently offer us the option of operating this service in a mode without this cookie. The NID cookie contains information about your user behaviour, which Google uses to optimize its own services and to provide you with individual, personalized advertising. Your consent therefore also covers the setting of this cookie.

Google anonymizes data in server logs by deleting part of the IP address and cookie information after 9 and 18 months respectively.

Depending on your decision, location and activity data is stored for either 3 or 18 months and then deleted. You can also delete the history manually at any time via your Google account. If you want to completely prevent your location from being recorded, you must deactivate the "Web and app activity" section in your Google account.

You can find more information in Google's privacy policy, which you can access here: https://www.google.com/policies/privacy/

Here you can find out exactly where Google data centers are located: https://www.google.com/about/datacenters/inside/locations/

The data processing conditions for Google products and the standard contractual clauses for data transfer to third countries can be found at https://business.safety.google/adsprocessorterms/

Google Marketing Platform / Google Ad Manager (formerly Doubleclick)

Purpose: Marketing
Recipient country: USA

The Google Marketing Platform / Google Ad Manager service from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google") is used on our website for the purpose of analyzing, optimizing and economically operating our online offering.

This is done by means of a pseudonymous identification number (pID), which is assigned to your browser. This pID allows the service to recognize which ads have already been displayed to you and which have been accessed. The data is used to display advertisements across websites by enabling Google to identify the pages visited.

The information generated is transmitted by Google to a server in the USA for analysis and stored there. A transfer of data by Google to third parties only takes place on the basis of legal regulations or in the context of order data processing. Under no circumstances will Google combine your data with other data collected by Google.

The processing of your data is based on your consent within the meaning of Art. 6 para. 1 lit. a GDPR. You can revoke this consent at any time with effect for the future.

Here you can find out exactly where Google data centers are located: https://www.google.com/about/datacenters/inside/locations/

Further information on the use of data by Google, as well as setting and objection options, can be found in Google's privacy policy at https://policies.google.com/technologies/ads and in the settings for the display of advertisements by Google at https://adssettings.google.com/authenticated

Data processing conditions for Google advertising products: Information on the services Data processing terms between controllers and standard contractual clauses for third country transfers of data: https://business.safety.google/adscontrollerterms

Google reCAPTCHA

Purpose: Technically required
Recipient country: USA

Our website uses the reCAPTCHA service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google") to protect against misuse by non-human visitors (bots) and to prevent spam.

When you start reCAPTCHA, your browser establishes a connection to Google's servers. This informs Google that our website has been accessed via your IP address.

The purpose of reCAPTCHA is to check whether data is entered on our website by a human or by an automated program. For this purpose, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters our website. For the analysis, reCAPTCHA evaluates various pieces of information.

According to our information, the following data is processed by Google:

the address of the page from which the visitor came
IP address
Information about the operating system
Cookies
Mouse and keyboard behavior
Date and language settings
All Java Script objects
Screen resolution

The data collected during the analysis is forwarded to Google and used by Google. The reCAPTCHA analyses run completely in the background.

Cookies are used to process the service. These cookies require a unique identifier for tracking purposes. According to Google, the IP address is not merged with other data from other Google services unless you are logged into your Google account while using the reCAPTCHA plug-in. Furthermore, reCAPTCHA also uses the local storage on the user's device to store data.

Here you can find out exactly where Google data centers are located: https://www.google.com/about/datacenters/inside/locations/

You can find more information about Google reCAPTCHA here: https://developers.google.com/recaptcha/

Please refer to the following link for Google's privacy policy: https://policies.google.com/privacy

Google Tag Manager

Our website uses the Google Tag Manager service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google").

When you start the Google Tag Manager, your browser establishes a connection to Google's servers. These are mainly located in the USA. This gives Google knowledge that our website has been accessed via your IP address. You can find out exactly where Google data centers are located here: https://www.google.com/about/datacenters/inside/locations/

The Tag Manager is a service that allows us to manage website tags via an interface. This allows us to add code snippets such as tracking codes or conversion pixels to websites without interfering with the source code. The Tag Manager only forwards the data, but neither collects nor stores it. The Tag Manager itself is a cookie-less domain and does not process any personal data, as it is used purely to manage other services in our online offering. In any case, this constitutes a legitimate interest on the basis of Art. 6 para. 1 lit. f GDPR. The Tag Manager ensures the resolution of other tags, which in turn may collect data. However, the Tag Manager does not access this data. If deactivation has been carried out at domain or cookie level, this remains in place for all tracking tags that are implemented with the Tag Manager.

To prevent this service, you can install a JavaScript blocker. However, this may result in the website no longer functioning as usual.

Further information on data protection can be found on the following Google websites:

Privacy Policy: https://policies.google.com/privacy
FAQ Google Tag Manager: https://www.google.com/intl/de/tagmanager/faq.html
Terms of Use Google Tag Manager: https://marketingplatform.google.com/intl/de/about/analytics/tag-manager/use-policy/
Google Ads Data Processing Terms including Standard Contractual Clauses for Third Country Transfers: https://business.safety.google/adsprocessorterms/

Microsoft Advertising

Purpose: Statistics
Recipient country: USA

The Microsoft Advertising (formerly Bing Ads) service is used on our website to analyze and optimize its economic operation. Microsoft Advertising is a conversion and tracking service of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA ("Microsoft").

Microsoft Advertising places cookies on users' devices that analyze user behavior on our website. This assumes that the user has reached our website via an advertisement from Microsoft Advertising. This provides us with information on the total number of users who clicked on such an ad, were redirected to our website and previously reached a specific target page (so-called conversion measurement). No IP addresses are stored and no personal information about the identity of our users is disclosed.

The processing of your data is based on your consent within the meaning of Art. 6 para. 1 lit. a GDPR. You can revoke this consent at any time with effect for the future.

You can find more information about Microsoft Advertising's analytics services on the Microsoft website at https://help.ads.microsoft.com/#apex/3/de/53056/2

You can find more information on data protection at Microsoft in Microsoft's privacy policy at https://privacy.microsoft.com/de-de/privacystatement

Microsoft Clarity

We use the Microsoft Clarity service on our website to statistically analyze the use of our website. The provider of Microsoft Clarity is Microsoft Corporation, One Microsoft Way, Redmond, WA 98052 USA ("Microsoft").

Microsoft Clarity uses cookies that enable us to analyze the use of our website, as well as a so-called tracking code that is executed when this service is called up. The information collected, such as your IP address, location, time or frequency of visits to our website, is transmitted to Microsoft and stored there. According to information from Microsoft, this information can also be used for advertising purposes and other services related to the use of our website and the use of the Internet. We use Microsoft Clarity with the so-called anonymization function. This function allows Microsoft to shorten the IP address within the EU or EEA.

The processing of your data is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke this consent at any time for the future.

You can find Microsoft's data protection information in the Microsoft Privacy Statement at https://privacy.microsoft.com/de-de/privacystatement

Further information and Microsoft Clarity's privacy policy can be found at https://clarity.microsoft.com/terms

Stripe

We use the payment service provider Stripe to process payments on our website. The provider of this service is Stripe Inc, 510 Townsend Street San Francisco, California 94103. The European representative of this service provider is Stripe Payments Europe Ltd, North Wall Quay Dublin 1, Dublin, Ireland.

As part of a payment transaction, we send the service provider the information you have provided about your inventory data (such as name, address), about your order and data necessary for processing the payment, such as bank details, possibly credit card number, invoice amount, currency, etc. The processing of this data is based on our obligation to fulfill the contract in accordance with Art. 6 para. 1 lit. b GDPR or on our legitimate interest in the proper execution of payments in accordance with Art. 6 para. 1 lit. f GDPR. The transfer of data takes place exclusively for the purpose of payment processing and only to the extent necessary for this purpose.

We do not have direct access to the payment data you have entered, but we do receive information from the service provider as to whether payments have been made correctly. As part of payment processing, the service provider may forward your data to a credit agency to check your creditworthiness. Please refer to Stripe's general terms and conditions and data protection information.

You can find more information on data protection via this service at https://stripe.com/de/privacy

Youtube

Purpose: External media
Recipient country: USA

We use the "YouTube" service on our website to embed videos. The provider of this service is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("YouTube").

We have activated the extended data protection mode on YouTube. According to YouTube, this mode means that YouTube does not store any information about visitors to this website before they watch a video. However, the transfer of data to YouTube partners is not excluded by the extended data protection mode.

As soon as you start a YouTube video, a connection to the YouTube servers is established. This tells YouTube which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. This can be prevented by logging out of your account.

Furthermore, YouTube may store various cookies on your end device after starting a video or use comparable technologies (e.g. device fingerprinting). YouTube also uses local storage on your device. In this way, YouTube can obtain information about visitors to this website. This information is used, among other things, to record video statistics, improve user-friendliness and prevent fraud attempts.

The use of YouTube is in the interest of an appealing presentation of our website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; the consent can be revoked at any time for the future.

The applicable YouTube privacy policy can be found at: https://www.google.com/policies/privacy/, opt-out option: https://adssettings.google.com/authenticated

Clear attribution

We use the services of Klar (Klar Insights GmbH, Marktstr. 18, 80802 Munich, Germany) on our website. Klar collects, processes and stores data on this website and its subpages for reach measurement and statistical analysis on our behalf. This collection takes place on the following legal basis:

If the user has given consent in accordance with Article 6 (1) sentence 1 a GDPR and Section 25 (1) sentence 1 TTDSG, the data to be processed will be collected on a user-related basis.

Different cookies are used for the aforementioned different types of recording in order to guarantee the respective type of recording.

Cookie - Objection

To object to the use of Klar in principle, please use this link. This will set a cookie with the name "do_not_track" from the domain "feuerstein-essentials.ch". Please do not delete this, as otherwise it cannot be guaranteed that you will not be tracked by Klar.

Information on data protection and data use by Klar can be found on the following website: https://www.getklar.com/data-protection

2. payments

This website uses external payment service providers through whose platforms users and we can carry out payment transactions. For example via

PostFinance (https://www.postfinance.ch/de/detail/rechtliches-barrierefreiheit.html)
Visas (https://www.visa.de/nutzungsbedingungen/visa-privacy-center.html)
Mastercard (https://www.mastercard.ch/de-ch/datenschutz.html)
American Express (https://www.americanexpress.com/de/content/privacy-policy-statement.html)
Paypal (https://www.paypal.com/de/webapps/mpp/ua/privacy-full)
Bexio AG (https://www.bexio.com/de-CH/datenschutz)
Payrexx AG (https://www.payrexx.ch/site/assets/files/2592/datenschutzerklaerung.pdf)
Apple Pay (https://support.apple.com/de-ch/ht203027)
Stripe (https://stripe.com/ch/privacy)
Klarna (https://www.klarna.com/de/datenschutz/)
Skrill (https://www.skrill.com/de/fusszeile/datenschutzrichtlinie/)
Giropay (https://www.giropay.de/rechtliches/datenschutz-agb/) etc.

As part of the fulfillment of contracts, we use payment service providers on the basis of the Swiss Data Protection Ordinance and, if necessary, Art. 6 para. 1 lit. b. EU-DSGVO. In addition, we use external payment service providers on the basis of our legitimate interests in accordance with the Swiss Data Protection Ordinance and, if necessary, in accordance with Art. 6 para. 1 lit. f. EU GDPR in order to offer our users effective and secure payment options.

The data processed by the payment service providers includes inventory data, such as the name and address, bank data, such as account numbers or credit card numbers, passwords, TANs and checksums, as well as the contract, totals and recipient-related details. The information is required to carry out the transactions. However, the data entered is only processed by the payment service providers and stored by them. As the operator, we do not receive any information about the (bank) account or credit card, but only information to confirm (accept) or reject the payment. Under certain circumstances, the data may be transmitted by the payment service providers to credit agencies. The purpose of this transmission is to check identity and creditworthiness. Please refer to the terms and conditions and data protection information of the payment service providers.

Payment transactions are subject to the terms and conditions and the data protection notices of the respective payment service providers, which can be accessed on the respective website or transaction applications. We also refer to these for further information and the assertion of rights of revocation, information and other rights of data subjects.

In order to be able to offer you Klarna's payment options, we will transmit personal data, such as contact details and order data, to Klarna. This enables Klarna to assess whether you can use the payment options offered via Klarna and to adapt the payment options to your needs. You can find general information about Klarna here. Your personal data will be treated by Klarna in accordance with the applicable data protection regulations and in accordance with the information in Klarna's privacy policy.

3. transmission of your personal data

We will transfer your (personal) data to the following recipients for the purposes explained in this privacy policy:

Within our organization, those departments or employees will receive your data that need it to fulfil contractual or legal obligations and due to data processing based on our legitimate interests.

Furthermore, (external) processors commissioned by us will receive your data if they need the data to provide their respective services (whereby access to personal data is sufficient). All processors are contractually obliged to treat your data confidentially and to process it only in the context of providing the service. This includes the following categories of recipients:

Customer management
Analysis tools
IT service providers and IT support we use
Marketing management
any shipping companies for the dispatch of the print journal
Payment provider

We always have an up-to-date list of our categories of recipients with regard to data transfers and processors. Some of the recipients listed above are located outside the EU or process your (personal) data there. However, we take measures to ensure that all recipients have an appropriate level of data protection. To this end, we conclude standard contractual clauses, for example, which can be provided on request. Alternatively, we use providers that have an adequate level of data protection in accordance with the GDPR (according to the European Commission's adequacy decision).

If we use processors, they are bound by our data protection practices, as already mentioned, and your personal data will be treated in strict confidence. Under no circumstances will processors transfer your data to third parties without your express consent or use it for purposes other than those intended to fulfill your obligations to Feuerstein and on the basis of our express instructions.

4. rights of data subjects

One of the main concerns of data protection law is to give you certain options for disposing of your personal data, even after data processing has already begun. For this purpose, there are a number of data subject rights, which we will comply with immediately upon your request, but generally within one (1) month at the latest.

To exercise your rights, please contact us at the following email address: info@feuerstein-essentials.ch.

The following rights are provided in detail:

(a) If you exercise your right to information and there are no legal restrictions to the contrary, we will provide you with comprehensive information about our processing of your data. For this purpose, we will provide you with (i) copies of the data (e-mails, database extracts, etc.), as well as information on (ii) specifically processed data, (iii) processing purposes, (iv) categories of processed data, (v) recipients, (vi) the storage period or criteria for its determination, (vii) the origin of the data and (viii) further information depending on the individual case. Please note, however, that we cannot hand over any documents that could affect the rights of other persons.

(b) With the right to rectification, you can request that we correct data that has been recorded incorrectly, has become incorrect or is incomplete (for the respective processing purpose). Your request will then be examined, whereby the data processing concerned may be restricted for the duration of the examination upon request.

(c) The right to (data) erasure may be exercised (i) in the absence of necessity with regard to the purpose of processing, (ii) in the event of revocation of a consent given by you, (iii) in the event of a specific objection, insofar as the data processing concerned is based on the legitimate interests of Feuerstein, (iv) in the event of unlawful data processing, (v) in the event of the existence of a legal obligation to erase and (vi) in the event of data processing of minors under the age of 16.

(d) An accompanying right to restriction, after the exercise of which the data concerned may only be stored, exists in special cases. In addition to the possibility of restricting the duration of the examination of data corrections, (i) unlawful data processing (unless deletion is requested) and (ii) the duration of the examination of a request for objection in accordance with Art. 21 para. 1 GDPR are covered.

(e) You also have a fundamental right to object to data processing at any time. However, this only applies if the processing is based on the legitimate interests of Feuerstein. Please note, however, that legitimate interests are only used as a legal basis for processing operations in individual cases.

(f) You can also exercise your right of appeal to the supervisory authority (see point 9).

(g) You also have a right to data portability, after exercising which you have the right to receive the data concerned in a structured, commonly used and machine-readable format and to transmit this data to another controller and to request direct transmission to another controller.

Please also note that we may not be able to comply with your request due to compelling legitimate grounds for processing (balancing of interests) or processing for the establishment, exercise or defense of legal claims (on our part). The same applies in the case of excessive requests, whereby a fee may be charged in this case as well as for the fulfillment of manifestly unfounded requests.

5. data security, data deletion

Feuerstein takes all appropriate technical and organizational measures to ensure that only those personal data are processed by default whose processing is absolutely necessary for the business purpose. The measures taken by Feuerstein concern both the amount of data collected, the scope of processing and their storage period and accessibility. By means of these measures, Feuerstein ensures that personal data is only made accessible to a strictly limited and necessary number of persons by default. Other persons are not granted access to personal data under any circumstances without the express consent of the data subject. Feuerstein also uses various protection mechanisms (backups, encryption) to secure the website and other systems. This is intended to protect your (personal) data as best as possible against loss or theft, destruction, unauthorized access, modification and distribution.

All employees of Feuerstein have been sufficiently informed about all applicable data protection regulations, internal data protection regulations and data security precautions and are required to keep secret all information entrusted or made accessible to them in the course of their professional employment. The requirements of the GDPR are strictly observed and personal data is only made available to individual employees to the extent that this is necessary with regard to the purpose of data collection and our resulting obligations. Where processors are used by Feuerstein, they are obliged to act in accordance with our data protection practices on the basis of specific framework agreements with us.

In accordance with the provisions of the GDPR, all (personal) data collected by us via the website will only be stored for as long as it is required with regard to the legal reason for processing, unless longer-term storage is required by law. We comply with our deletion obligation on the basis of our specific internal company deletion concept, whereby we can provide you with more detailed information on request.

6. links to third party sites

We use links to third-party sites on our website. These are reference links that lead to our permanent partners on the one hand, and links to social networks (e.g. Facebook, Instagram, YouTube) on the other. If you click on one of these links, you will be forwarded directly to the respective page. The website operators can only see that you have accessed our website. Accordingly, we refer you to the separate privacy policies of these websites.

The purpose and scope of data collection and further processing and use by Facebook, as well as your rights and settings options, can be found in the Facebook privacy policy at the following link: https://de-de.facebook.com/policy.php The privacy policies of Instagram and YouTube can be found at https://help.instagram.com/519522125107875 and at https://support.google.com/youtube/answer/7671399?p=privacy_guidelines&hl=de&visit_id=636927545803058837-989013203&rd=1

These links to third-party websites do not constitute an endorsement of their content by the publisher. No responsibility is assumed for the availability or content of such websites and no liability is accepted for damage or injury resulting from the use of such content of any kind. The links to other websites merely provide users with access to use the content. Liability for illegal, incorrect or incomplete content and for damages arising from its use lies solely with the provider of the linked site.

7. personalized advertising

On our website, you have the option of registering for personalized product & service offers (trends, promotions, surveys & vouchers). You will receive a limited number of product recommendations, surveys and requests for product ratings based on your interests by e-mail, post or messenger service. When selecting individual product recommendations, we use the data from your previous orders and activities on our website in compliance with the statutory provisions.

We use a range of security measures, including encryption and authentication tools, to protect and maintain the security, integrity and availability of your personal data.
Although no data transmission over the internet or website can be guaranteed to be free from cyber-attack, we and our subcontractors and business partners work hard to put in place physical, electronic and procedural safeguards to protect your personal data in accordance with applicable data protection laws. We use measures such as:

highly restricted personal access to your personal data on a "need-to-know" basis and only for the disclosed purpose,

Transmission of the personal data collected only in encrypted form,

Storage of particularly sensitive personal data - such as credit card information - only in encrypted form,

Separation of functions in IT systems to prevent unauthorized access, e.g. by hackers, and

Ongoing monitoring of access to IT systems to detect and prevent the misuse of personal data.

8th Newsletter

On our website you have the option of subscribing to the Feuerstein newsletter. To do so, you must enter your name and e-mail address. We also ask for your country of residence in order to be able to provide you with more personalized information. This data is required to send the newsletter and to be able to address you correctly (Art. 6 para. 1 lit. b GDPR). Under no circumstances will a newsletter or other electronic advertising be sent without your prior consent. The Feuerstein newsletter informs you, among other things, about the latest Feuerstein products and the latest trends and is sent exclusively to e-mail addresses provided by interested parties themselves. If you no longer wish to receive the newsletter, you can of course unsubscribe at any time by clicking on the "Unsubscribe newsletter" button. The data collected for sending the newsletter will be deleted after you unsubscribe, unless otherwise provided by law and unless the data is processed on another legal basis. We also use the newsletter for statistical evaluations in connection with your personal data and measure the performance of the newsletter by processing the opening of the newsletter, click behavior and information on the technical deliverability of the newsletter. This processing is carried out on the legal basis of our overriding legitimate interest in creating easy-to-use and marketing-effective newsletter statistics in a cost-efficient manner (Art. 6 para. 1 lit. f GDPR).

Newsletter via Klaviyo: We use the Klaviyo component to send our newsletter. Klaviyo is a service provided by Klaviyo Inc, Boston, USA. Your data stored when you register for the newsletter (e-mail address, name if applicable, IP address, date and time of your registration) will be transmitted to a server of Klaviyo Inc. in the USA and stored there in compliance with the "EU-U.S. Privacy Shield". Further information on data protection at Klaviyo can be found at: http://klaviyo.com/privacy/. You can cancel or revoke your subscription to this newsletter and thus your consent to the storage of your data at any time for the future. Details on this can be found in the confirmation email and in each individual newsletter.

Newsletter tracking: Our newsletters contain so-called web beacons or tracking pixels, which enable us to recognize whether and when an email was opened and which links in the email were followed by the personalized recipient. We store this data so that we can tailor our newsletters to the wishes and interests of our subscribers. Accordingly, the data collected in this way is used to send personalized newsletters to the respective recipient.

9. right of appeal

If you are of the opinion that we are violating applicable data protection law when processing your data, you have the right to lodge a complaint with the competent national data protection authority. The requirements for such a complaint are based on § 24ff DSG. However, we ask you to contact us beforehand so that we can clarify any questions or problems.

The contact details of the data protection authority are as follows:

Federal Data Protection and Information Commissioner FDPIC
Feldeggweg 1, 3003 Bern

www.edoeb.admin.ch

Telephone advice service: 058 462 43 95

(Monday - Friday from 10 am to 12 pm)

10. contact for data protection questions, notifications, requests

For data protection questions, notifications or requests, please use the following contact address:

Feuerstein Essentials Switzerland GmbH
Via Maistra 1
7500 St. Moritz
Switzerland

E-mail: info@feuerstein-essentials.ch

<div class="dynamic-checkout__content" id="dynamic-checkout-cart" data-shopify="dynamic-checkout-cart"> <shopify-accelerated-checkout-cart wallet-configs="[{"supports_subs":false,"supports_def_opts":false,"name":"paypal","wallet_params":{"shopId":11501862993,"countryCode":"CH","merchantName":"FEUERSTEIN","phoneRequired":false,"companyRequired":false,"shippingType":"shipping","shopifyPaymentsEnabled":true,"hasManagedSellingPlanState":false,"requiresBillingAgreement":false,"merchantId":"EL4CFHVDVAJ96","sdkUrl":"https://www.paypal.com/sdk/js?components=buttons\u0026commit=false\u0026currency=CHF\u0026locale=fr_FR\u0026client-id=AexZEtAxk09Ncgj6FSWFFyGKbxxAZ_LTyJ2DPdJWl1YUlecinmc5AfIaRF2qYjWlusWahlzz6SVkY5Ci\u0026merchant-id=EL4CFHVDVAJ96\u0026intent=authorize"}}]" access-token="884c3b9e5e97f076eaba885087e7c76b" buyer-country="CH" buyer-locale="fr" buyer-currency="CHF" shop-id="11501862993" cart-id="a9312adbbf61cd0bb21c3c7fb5396fe5" enabled-flags="["ce346acf"]" > <div class="wallet-button-wrapper"> <ul class='wallet-cart-grid wallet-cart-grid--skeleton' role="list" data-shopify-buttoncontainer="true"> <li data-testid='grid-cell' class='wallet-cart-button-container'><div class='wallet-cart-button wallet-cart-button__skeleton' role='button' disabled aria-hidden='true'>&nbsp</div></li> </ul> </div> </shopify-accelerated-checkout-cart> <small id="shopify-buyer-consent" class="hidden" aria-hidden="true" data-consent-type="subscription"> Au moins un article de votre panier constitue un achat récurrent ou différé. En continuant, j’accepte la <span id="shopify-subscription-policy-button">politique de résiliation</span> et vous autorise à facturer mon moyen de paiement aux prix, fréquences et dates listées sur cette page jusqu’à ce que ma commande soit traitée ou que je l’annule, si autorisé. </small> </div>

Please enter search term:

Product added

Politique de confidentialité

1. data processing operations in the context of the use of our website

1.1 Visiting our website

Server log files (access data)

Hosting

1.2 Non-binding inquiries/requests within the scope of the website visit

1.3 Data processing when you become our customer and wish to purchase products

1.4 Use of cookies in general

1.5 Use of tools and plugins on our website

Data transfer to the USA / elimination of the Privacy Shield

Facebook pixel

Google Analytics

Google Fonts

Google Maps

Google Marketing Platform / Google Ad Manager (formerly Doubleclick)

Google reCAPTCHA

Google Tag Manager

Microsoft Advertising

Microsoft Clarity

Stripe

Youtube

Clear attribution

2. payments

3. transmission of your personal data

4. rights of data subjects

5. data security, data deletion

6. links to third party sites

7. personalized advertising

8th Newsletter

9. right of appeal

10. contact for data protection questions, notifications, requests