Privacy Policy
Responsibility
Guido Schneider
Schwarzburger Weg 7
50259 Brauweiler
Germany
Phone: +49 [0] 22 34 6 80 60 70
e-Mail: kontakt@brass-fonts.de
Website: www.brass-fonts.de
General information
The following information provides a simple overview of what happens to your personal data when you visit our website. Personal data is any data by which you can be personally identified. Under no circumstances we will sell or rent personal data to third parties. For detailed information on the subject of data protection, please refer to our data protection declaration listed below this text.
1. Access data and hosting
You may visit our website without revealing any personal information. With every visit on the website, the web server stores automatically only a so-called server log file which contains e.g. the name of the requested file, your IP address, the date and time of the request, the volume of data transferred and the requesting provider (access data), and documents the request. These access data are analysed exclusively for the purpose of ensuring the smooth operation of the website and to improve our service. This serves according to Art. 6 (1) 1 lit. f GDPR the protection of our legitimate interests in the proper presentation of our offer that are overriding in the process of balancing of interests. All access data are deleted no later than seven days after the end of your visit on our website.
The services for hosting and displaying the website are partly provided by our service providers on the basis of processing on our behalf. Unless otherwise stated in this privacy policy, all access data and all data collected in forms provided for this purpose on this website are processed on their servers. If you have any questions about our service providers and the basis of our cooperation with them, please use the contact option described in this privacy policy.
Our service providers are located and/or use servers in these countries: EU/USA
There is no adequacy decision for these countries by the European Commission. Our cooperation with them is based on these safeguards: Standard data protection clauses adopted by the European Commission
2. Data processing for the purposes of processing the contract, establishing contact
We collect personal data that you disclose to us whenever you place an order or contact us (e.g. via contact form or by e-mail). Mandatory fields are marked as such because we absolutely need those data to perform the contract or process your contact request, and you would otherwise not be able to complete your order or send the contact request. It is evident in each input form what data are collected. We use the data that you disclose to us to perform the contract and process your enquiries (including enquiries regarding the processing of any existing warranty and performance fault claims as well as any statutory updating obligations) according to Art. 6 (1) (b) GDPR. You will find further information on the processing of your data, in particular on forwarding the data to our service providers for the purpose of order and shipping processing, in the following sections of this privacy policy. Upon contract completion, any further processing of your data will be restricted, and your data will be deleted upon expiry of any retention period applicable under relevant regulations according to Art. 6 (1) (c) GDPR, unless you expressly agree to the further use of your data according to Art. 6 (1) (a) GDPR or we reserve the right to otherwise use your personal data in the scope and manner permitted by law, of which we inform you in this privacy policy.
As part of our customer communication, we collect personal data in order to process your enquiries in accordance with Art. 6 (1) (b) GDPR if you voluntarily provide us with this data when contacting us (e.g. via contact form or e-mail). Mandatory fields are marked as such, as in these cases we necessarily need the data to process your enquiry. Which data is collected can be seen from the respective input forms. After your enquiry has been fully processed, your data will be deleted unless you have expressly consented to further use of your data in accordance with Art. 6 (1) (a) GDPR or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this privacy policy.
3. Data processing for the purposes of payment
As part of the payment process in our online shop, we work together with these partners: technical service provider, credit institution, payment service provider.
If you place an order on our website, and choose to pay by credit card, the transaction is handled using Stripe, a third-party payment vendor. To secure your information, Stripe uses Secure Socket Layer (SSL) technology. All credit card information is communicated between the browser and Stripe directly, and not through our servers. Please consult Stripe’s Privacy Policy here and see its EU-US-Privacy Shield here
– 1. Depending on the selected payment method, we forward the data necessary for processing the payment transaction to our technical service providers, who act for us on the basis of processing on our behalf or to the authorised credit institutions or to the selected payment service provider insofar as this is necessary for the payment process. This serves the fulfilment of the contract according to Art. 6 (1) (b) GDPR. In certain cases, payment service providers collect the data required for processing the payment themselves, e.g. on their own website or via technical solution within the ordering process. In this respect, the privacy policy of the respective payment service provider applies. If you have any questions about our payment processing partners and the basis of our cooperation with them, please use the contact option described in this privacy policy.
– 2. We may forward other data to our service providers, which they use for the purpose of fraud prevention and to optimise our payment processes (e.g. invoicing, processing of contested payments, accounting support) together with the data necessary to process the payment as our processors. This serves to safeguard our legitimate interests in fraud prevention or an efficient payment management in accordance with Art. 6 (1) (f) GDPR that are overriding in the process of balancing of interests.
4. Data use when registering for the e-mail newsletter
If you subscribe to our newsletter we use the data required for this purpose or that which is separately provided by you in order to regularly forward our newsletter to you. You may unsubscribe from the newsletter at any time via the contact facility set out below or via a link provided for this purpose within the newsletter. To send these e-mail newsletters we use the third-party service of Mailchimp. If you do not wish to receive these e-mail announcements anymore, please click the “unsubscribe” link at the bottom of any of these e-mails. You can also e-mail us, using the e-mail account you used to sign up for the newsletter with “Unsubscribe newsletter” in the subject line of the e-mail, we will then remove your e-mail address from the list. Ruled under the Privacy Policy of the particular service provider. Please consult Mailchimp’s Privacy Policy here. This service provider is located in the US and is certified under the EU-US Privacy Shield. A current certificate can be viewed here.
5. Use of cookies
In order to make visiting our website attractive and to enable the use of certain functions (cart and shop functions), to display suitable products or for market research, we use technologies on various pages, including so-called cookies.
Cookies are small text files that are automatically stored on your device. Some of the cookies used by us will be deleted at the end of your browser session, i.e. once your browser has been closed (so-called session cookies). Other cookies remain on your end device and enable us to recognise your browser during your next visit (persistent cookies). We use such technologies that are strictly necessary for the use of certain functions of our website (e.g. shopping cart function). These technologies are used to collect and process IP addresses, time of visit, device and browser information as well as information on your use of our website (e.g. information on the contents of the shopping basket). This serves to safeguard our legitimate interests in an optimised presentation of our offer in accordance with Art. 6 (1) (f) GDPR that are overriding in the process of balancing of interests.
Essential cookies: These cookies are necessary to enable you to use our website. This includes e.g. cookies that enable you to log into the customer area or add items to your shopping cart. You may use the provided links for detailed explanation how to deactivate cookies in Internet Explorer, Edge, Safari, Chrome, Firefox or Opera. You may need to adjust the language and your operating system to display the information correctly. If you have consented to the use of the technologies in accordance with Art. 6 (1) (a) GDPR, you can withdraw your consent at any time by sending a message to the contact option described in the privacy policy. Please note: If you reject cookies, the functionality of our website may be affected.
6. Third parties involved in our process
We will not share your personal information with third parties for the purpose of marketing their products, but we share your personal information with companies that provide us with support services in conducting our business, operating the website. This includes Stripe and Mailchimp. We share your personal information only if these companies require such information to perform their functions. We do not authorize these companies to use your personal information for any other purpose. We will share your personal information with the appropriate authorities if we believe in good faith that doing so is required by law or court order, to protect our rights or property, or to protect the safety of our users or the public. We also share your personal information with our accountant, for VAT and TAX purposes.
To sum up all third parties involved in our process (some of them mentioned already):
– 1. Our website is build with Drupal CMS (The Drupal Association, 3439 NE Sandy Blvd # 269, Portland, OR 97232, USA). Please consult their Privacy Policy here.
– 2. The website is hosted with Hetzner (Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany). Please consult their Privacy Policy here.
– 3. Payments in our webshop are processed by Stripe (Stripe Inc, 510 Townsend Street, San Francisco, CA 94103, USA). Please consult Stripe’s Privacy Policy here and see its EU-US-Privacy Shield here.
– 4. Our e-mail newsletter is processed by Mailchimp, a service of The Rocket Science Group Limited. Please consult Mailchimp’s Privacy Policy here.
– 5. For embedding Videos we use ports of the provider Vimeo, that may use Google Analytics. Please consult Vimeo’s Privacy Policy here. For the same reason we also use Youtube of Google LLC. Please consult Youtube’s Privacy Policy here.
– 6. To communicate new products, upgrades, work in progress and foundry related stuff, we use the platforms of Facebook, LinkedIn and Instagram. But we don’t have any Social Plugin running on our website and we don’t gather information from followers on these platforms.
Please consult Facebook’s Privacy Policy here and view the US based privider’s EU-US Privacy Shield here. And consult LinkedIn’s Privacy Policy here. Plus consult Instagram’s Privacy Policy here.
– 7. Only if you have called us by phone or have written us an e-mail, we may use iCloud to synchronize your name, addresses, e-mail address and telephone number for future contact. iCloud is a service from Apple Inc. located in the US. Please consult iCloud’s Privacy Policy here.
7. Right of access and contact facility
You are entitled to access your personal information stored by us at no charge, including the right to correct, block or delete such data. Please use the contact details provided in our legal notice should you have any queries concerning the collection, processing or exploitation of your personal data, or should you wish to access, correct, block or delete any data, or should you wish to withdraw any approval provided for or object any use of such data.
We will then delete all information we hold in connection with your account which is no longer necessary to keep. Some information we have to hold because of VAT or TAX reasons, or to provide necessary licensing information to the respective font copyright holder.
8. Right of objection
As a customer you have the following rights:
– 1. You have the right to view your processed personal data that is used by us, according to Art. 15 General Data Protection Regulation (GDPR)
– 2. you have the right to immediate correction of wrong information about you or updating incomplete information, according to Art. 16 DSGVO.
– 3. You have the right, according to Art. 17 DSGVO, to have the personal data deleted as long as the data is not relevant:
3.1 to exercise the right to freedom of expression and information;
3.2 to fulfill a legal obligation;
3.3 for reasons of public interest or
3.4 to assert, exercise or defend legal claims
– 4. You have the right to to require the restriction of the processing of your personal data, according to Art. 18 DSGVO, as long as
4.1 the accuracy of the data is disputed by you;
4.2 the processing is unlawful, but you reject its deletion;
4.3 we no longer need the data, but you need it for asserting, exercising or defending legal claims or
4.4 you entered an rejected to the processing according to Art. 21 DSGVO;
– 5. You have the right to have the data you supplied transferred to you in a readable Format, or have it transferred to another responsible party, according to Art. 20 DSGVO
– 6. You have the right to complain to the inspecting authorities, according to Art. 77 DSGVO.
You can object to the usage of your data as explained above when the data is used for direct marketing. As long as the data is used for other purposes the right to object is only valid when proved with substantial reasons applying to your situation.
After exercising your right to object, we will not further process your personal data for these purposes, unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or if the processing of the assertion, exercise or defense of Legal claims serves.
This does not apply if the processing is for direct marketing purposes. Then we will not process your personal data for this purpose.
9. Changing the Privacy Policy
We may update or change this Privacy Policy. Any changes will be effective immediately when we post them, but they will only apply prospectively, not retroactively. You agree that your use of the Site following any modification will be deemed acceptance of the modified Privacy Policy. We encourage you to review this Privacy Policy each time you intend to submit personal information so that you are aware of how the information you submit will be used.
10. Contact options
If you have any questions regarding the collection, processing or use of your personal data, for information, correction, restriction or deletion of data as well as revocation of consents granted or objection to a specific use of data, please contact us directly using the contact details given in our provider identification.
This Privacy Policy is governed by the legal basis of “Art. 6 para. 1 lit. f DSGVO”.
Last update: 30 April 2024