Privacy Policy

​

Data Controller: AURA EXIMIA UG (haftungsbeschränkt)

Julia Grieger

Galgenstr. 3

91484 Sugenheim

Germany

Email: contact@auraeximia.com

​

We are delighted by your interest in our online shop. The protection of your privacy is very important to us. Below we inform you in detail about the handling of your data.

 

1. Access Data and Hosting

You can visit our web pages without providing any personal information. Each time a web page is called up, the web server automatically saves a so-called server log file, which contains, for example, the name of the requested file, your IP address, the date and time of the call, the amount of data transferred, and the requesting provider (access data) and documents the call. This access data is evaluated exclusively for the purpose of ensuring trouble-free operation of the site and improving our offer. This serves to safeguard our legitimate interests in a correct presentation of our offer, which prevail within the framework of a balancing of interests, pursuant to Art. 6 (1) (f) GDPR. All access data is deleted no later than seven days after the end of your visit to the site.

Hosting Services The services for hosting and displaying the website are provided by our service providers as part of processing on our behalf. Unless otherwise explained in this privacy policy, all access data and all data collected in forms provided on this website are processed on their servers. Our service providers are based and/or use servers in the following countries for which the European Commission has determined an adequate level of data protection: Israel, United Kingdom, USA (via the Data Privacy Framework certification). For other countries (Brazil, Mexico, India, Ukraine), our cooperation is based on the Standard Data Protection Clauses of the European Union.

 

2. Data Processing for Contract Execution and Contact

2.1 Data Processing for Contract Execution For the purpose of contract processing (including inquiries regarding warranty and performance claims) in accordance with Art. 6 (1) (b) GDPR, we collect personal data if you voluntarily provide it to us as part of your order. Mandatory fields are marked as such, as we need this data to process the contract.

2.2 Customer Account If you have given your consent pursuant to Art. 6 (1) (a) GDPR by deciding to open a customer account, we use your data for the purpose of opening the account and for storing your data for future orders. Deletion of your customer account is possible at any time by messaging us.

2.3 Contacting Us (Email/Chat) As part of customer communication, we collect personal data to process your requests in accordance with Art. 6 (1) (b) GDPR if you voluntarily provide it to us when contacting us (e.g., via contact form, live chat, or email). Live Chat Tool (Ascend by Wix): We use the live chat tool "Ascend" from Wix.com Ltd. (Israel). This serves to safeguard our legitimate interests in effective customer communication pursuant to Art. 6 (1) (f) GDPR. Wix acts on our behalf as our processor.

2.4 Contact via WhatsApp You have the option of contacting us via the WhatsApp messaging service. WhatsApp is a service of WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. If you contact us via WhatsApp, we use the phone number and name used by you, as well as the content of your message, to process your request. The legal basis for this is Art. 6 (1) (b) GDPR (contract initiation/performance). Please note that WhatsApp also processes data on servers in the USA (Meta Platforms Inc.). We have no influence on the data processing by WhatsApp. By using WhatsApp, you consent to this data transfer. If you do not wish to use WhatsApp, please contact us via email.

 

3. Data Processing for Shipping Purposes

For the fulfillment of the contract pursuant to Art. 6 (1) (b) GDPR, we pass on your data to the shipping service provider commissioned with the delivery (e.g., DHL, UPS), insofar as this is necessary for the delivery of ordered goods.

 

4. Data Processing for Payment

When processing payments, we pass on the necessary payment data to the commissioned credit institutions or payment service providers (e.g., PayPal, Stripe, Apple Pay). This serves the fulfillment of the contract pursuant to Art. 6 (1) (b) GDPR. Fraud Prevention: If necessary, we provide our service providers with further data for fraud prevention and optimization of our payment processes pursuant to Art. 6 (1) (f) GDPR.

 

5. Advertising by Email

5.1 Email Newsletter with Registration If you register for our newsletter, we use the data provided by you to send you our email newsletter based on your consent pursuant to Art. 6 (1) (a) GDPR. You may unsubscribe at any time.

5.2 Email Newsletter without Registration (Existing Customers) If we receive your email address in connection with the sale of a good or service and you have not objected, we reserve the right, on the basis of Section 7 (3) UWG, to send you offers for similar products from our range by email. You can object to this use of your email address at any time by sending a message to us or via the unsubscribe link in the email.

 

6. Cookies and Technologies

To make visiting our website attractive and to enable the use of certain functions, we use technologies including cookies.

• Essential Cookies: Strictly necessary for the website to function (e.g., shopping cart). No consent required.

• Functional/Analytical Cookies: Requires your consent via our Cookie Banner. Wix Statistics: We use analytics technologies from Wix.com Ltd. to create pseudonomized usage profiles. This helps us optimize our offer pursuant to Art. 6 (1) (f) GDPR.

 

7. Your Rights and Contact

7.1 Your Rights As a data subject, you have the following rights under the GDPR:

• Art. 15: Right to information about your stored data.

• Art. 16: Right to correction of incorrect data.

• Art. 17: Right to deletion of your data.

• Art. 18: Right to restriction of processing.

• Art. 20: Right to data portability.

• Art. 77: Right to lodge a complaint with a supervisory authority.

Right to Object (Art. 21 GDPR) If we process data to safeguard our legitimate interests, you can object to this processing with effect for the future. If the processing is for direct marketing purposes, you can exercise this right at any time.

7.2 Contact If you have any questions regarding the collection, processing, or use of your personal data, please contact us directly using the details provided in our Imprint or at contact@auraeximia.com.