Data protection information for customers and interested parties
(as of July 2024)
- Part 1: Information on Data protection about our data processing in accordance with Articles (Art.) 13, 14 and 21 of the General Data Protection Regulation (GDPR) and Articles 19 and 20 of the Swiss Federal Act on Data Protection (FADP)
- Part 2: Extended Privacy Policy for our website
- Part 3: Supplementary data protection information for our Facebook fan page
- History
We take data protection seriously and hereby inform you how we process your data and which claims and rights you are entitled to in accordance with applicable data protection regulations. This notice is valid from 25 May 2018 (introduction) and is adapted from time to time to reflect changes in processes and case law.
This data protection information relates to the data protection-relevant activities of all companies of the Jack Wolfskin Group (see companies listed under 1.), as well as in the context of services for external companies. In the listed companies, personal data is processed according to the same procedures and principles, therefore a standardised data protection information is used.
1. responsible body for data processing and contact details
The following responsibilities arise for the purposes described in this declaration and compliance with the locally applicable data protection laws and the GDPR:
For the purposes of
- the operation of the website and
- Product research and development
- the sale of Jack Wolfskin products - online and offline orders
Jack Wolfskin Retail GmbH Jack Wolfskin Kreisel 1 65510 Idstein/Ts. Phone +49 6126 954 0 Fax +49 6126 954 159 info@jack-wolfskin.com
is responsible.
(hereinafter: "We / us / Jack Wolfskin")
In addition, Jack Wolfskin is part of Topgolf Callaway Corp., 2180 Rutherford Road, Carlsbad, CA 92008, USA, and works together with other group companies. Your data may be received by Jack Wolfskin and the associated group companies or passed on to them by us.
As part of our business relationships, your personal data may therefore be passed on or disclosed to our group of companies. These may also be located outside the European Economic Area (EEA), i.e. in third countries. Such processing takes place exclusively to fulfil contractual and business obligations and to maintain your business relationship with us (legal basis is Art. 6 para. 1 lit. b or lit. f in each case in conjunction with Art. 44 ff. GDPR). We will inform you about the respective details of the transfer at the relevant points below.
The European Commission certifies that some third countries have a level of data protection comparable to the EEA standard by means of so-called adequacy decisions (a list of these countries and a copy of the adequacy decisions can be found here: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_en). In other third countries to which personal data may be transferred, however, there may not be a consistently high level of data protection due to a lack of legal provisions. If this is the case, we ensure that data protection is adequately guaranteed. This is possible via binding corporate rules, standard contractual clauses of the European Commission for the protection of personal data pursuant to Art. 46 para. 1, 2 lit. c GDPR (the standard contractual clauses of 2021 are available at https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX%3A32021D0915&locale-en), certificates or recognised codes of conduct.
Please contact our data protection officer if you would like more information on this.
With the following information, we provide you with the essential contents that our group of companies has contractually defined in the course of joint responsibility in accordance with Art. 26 GDPR for the processing of personal data within the framework of joint responsibility.Details of the recipients or categories of recipients of your data can be found insection 5. Shared responsibility Jack Wolfskin, Topgolf Callaway Brands Corp., 2180 Rutherford Road, Carlsbad, CA 92008, USA, Jack Wolfskin Ausrüstung für Draussen GmbH & Co. KGaA, JW Stargazer Holding GmbH and Skyrager GmbH and Topgolf Limited, Unit 8 Shepperton Business Park, Govett Avenue, Shepperton, TW 17 8 BA United Kingdom (hereinafter "Topgolf Callaway Brands") are affiliated as a group company (hereinafter jointly referred to as the "Group") and process personal data jointly as described below.
For this reason, Topgolf Callaway Brands has
Jack Wolfskin Ausrüstung für Draussen GmbH & Co. KGaA Jack Wolfskin Kreisel 1 65510 Idstein Phone +49 6126 954 0 Fax +49 6126 954 159 E-mail: info@jack-wolfskin.com
as EU representative pursuant to Art. 27 GDPR.
In order to safeguard your rights and in accordance with the requirements of the General Data Protection Regulation, the Group has entered into an agreement that sets out rules for the processing of your personal data. Personal data will only be shared by us with Topgolf Callaway Brands if there is a legal basis for doing so and if this is necessary for a specific purpose.
As so-called joint controllers pursuant to Art. 26 GDPR, the group of companies is jointly responsible for the processing of your personal data with regard to the processing activities. In particular, the group of companies has reached an agreement on who is responsible for exercising your rights as a data subject in accordance with Articles 15 to 22 GDPR and for fulfilling the information obligations in accordance with Articles 13 and 14 GDPR. The agreement concluded between the group of companies also contains the basic regulations for the internal organisation of their cooperation in the area of data protection in order to ensure the conditions for seamless and smooth cooperation. The main content of this agreement is explained in the following sections.
In particular, personal data of customers who place orders is processed in Topgolf Callaway Brands databases located in the USA as part of the joint responsibility agreement. To ensure an appropriate level of data protection, the group of companies has entered into extensive contractual arrangements.The group of companies processes sales information for internal reporting (business reporting) in order to identify sales trends and sales opportunities worldwide, which is in the interests of the group of companies and our customers. The legal basis is Art. 6 para. 1 sentence 1 lit. f) GDPR. Additional information that serves to analyse the purchasing behaviour of our customers is always subject to separate express consent in accordance with Art. 6 para. 1 sentence 1 lit. a) and is only processed by our group of companies after receipt of such consent (until a possible revocation by you).
The data is stored for the statutory retention periods and then deleted.
There is no automated decision-making, including profiling, within the meaning of Art. 22 GDPR. What has the Group agreed?The parties have jointly agreed on how your rights can be guaranteed and have also determined which obligations each party will fulfil in order to comply with the obligations of the GDPR. This concerns in particular the fulfilment of the rights of data subjects pursuant to Articles 15-21 GDPR and the fulfilment of the information obligations pursuant to Articles 13 and 14 GDPR.
In some scenarios described in this statement, companies from our group of companies may also be responsible for the use of your personal data. You can find more information on this in the relevant section. How is the cooperation organised?The group of companies has specifically defined in the agreement which competences, responsibilities and authorisations it has in relation to joint data processing. In order to ensure data protection-compliant joint data processing, the group of companies continuously coordinates and informs each other of all circumstances and findings from their respective spheres that could have a practical or legal impact on joint data processing.Irrespective of this allocation of responsibilities, which only regulates the internal relationship between the group of companies, the group of companies is jointly responsible to you as the data subject for the lawfulness of the joint data processing.
Who assumes which obligations under the GDPR and what does this mean for you as a data subject a) Information obligations pursuant to Art. 13 f. GDPR and Art. 26 para. 2 sentence 2 GDPRThe group of companies has agreed that outside of the data processing carried out for https://www.jack-wolfskin.com, Jack Wolfskin Ausrüstung für Draussen GmbH & Co. KGaA fulfils the respective information obligations pursuant to Art. 13 and Art. 14 GDPR.
b) Exercising the rights of data subjectsIf you wish to assert your data subject rights under Art. 15 to 21 GDPR with regard to the joint processing of your personal data by the group of companies, you can contact the data protection officer: datenschutz@jack-wolfskin.com.
The specific rights to which you are entitled can be found in the section "Your rights" in our data protection information.Irrespective of this, you can also assert your rights in connection with the joint processing of your personal data directly against each individual company in the group of companies. This will then be forwarded internally to the office responsible for data protection in each case.If necessary when exercising your rights as a data subject, the companies in the group of companies support each other within the framework of the agreement on joint responsibility.
c) Data protection incidents, communication with supervisory authorities
Jack Wolfskin Retail GmbH handles all data security incidents for all data processing covered by this Privacy Policy and communicates with the data protection authorities; including the fulfilment of any reporting obligations to the competent supervisory authority (Art. 33 GDPR) or notification obligations to the data subjects (Art. 34 GDPR).
Our leading authority is:
The Hessian Commissioner for Data Protection and Freedom of Information
represented by Prof Dr Alexander Roßnagel
Gustav-Stresemann-Ring 1 65189 Wiesbaden
The group of companies has contractually undertaken to ensure that if it becomes aware of a data protection incident, it will immediately take all measures necessary to secure the data and minimise any possible adverse consequences for the data subjects and inform the other companies in the group of companies about the data protection incident.
d) Central contact point:
The Jack Wolfskin Data Protection Officer is the central point of contact for all concerns and questions in connection with the data processing described in this Privacy Policy, available at https://www.jack-wolfskin.com.
You can reach the Data Protection Officer using the following contact details:
Jack Wolfskin Retail GmbH Jack Wolfskin Kreisel 1 65510 Idstein/Ts.
E-mail: datenschutz@jack-wolfskin.com
You can also contact Topgolf Callaway Brands Corp. regarding your concerns and to assert your rights. You can find more information on this at:
https://www.callawaygolf.com/customer-service?fid=legal&cid=legal-privacy-policy
2. Purposes and Legal basis on which we process your data
We process personal data in compliance with the provisions of the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG), the Swiss Federal Act on Data Protection (DSG), the Telecommunications Telemedia Data Protection Act and other applicable data protection regulations (details in the following).
Which data is processed in detail and how it is used depends largely on the purposes of processing.
Further details or additions to the purposes of data processing can be found in the respective contract documents, forms, declaration of consent and/or other information provided to you , e.g. in the context the use of our website or our terms and conditions. In addition, this data protection information may be updated from time to time, as you can see from our website www.jack-wolfskin.com/Data-Protection.html.
2.1 Purposes for fulfilment of a contract or pre-contractual measures (Art. 6 para. 1 sentence 1 lit. b) GDPR or Art. 31 para. 2 lit. a DSG )
The processing of personal data takes place for the execution of our contracts with you and the execution of your orders as well as at your request for the execution of measures and activities in the context of pre-contractual relationships, e.g. with interested parties. In particular, the processing serves the provision of deliveries of our products and the services associated with our products in accordance with your orders and requests. The scope of processing thus extends to the personal data that is required for the respective service, measure, or activity.
This also includes contract-related communications with you, the traceability of transactions, orders and other agreements as well as for quality control through corresponding documentation, Goodwill procedures , measures for control and optimisation of business processes and for fulfilment of the general duties of care, control and monitoring by affiliated companies (e.g. B. parent company); statistical analyses for corporate management , cost recording and controlling , reporting, internal and external communication, emergency management, Accounting and tax Evaluation of operational services, risk management , assertion of legal claims and defence in legal disputes; Guarantee of IT security (including system and plausibility checks) and general security, including building and plant security, security and exercising the domiciliary rights (e.g. through access controls); ensuring the integrity , authenticity and availability of data, prevention and investigation of criminal offences; and control by supervisory bodies or control bodies (e.g. audit).
2.2 Purposes in the context a legitimate interest by us or third parties (Art. 6 para. 1 sentence 1 lit. f) GDPR or Art. 31 para. 1 DSG )
Beyond the actual fulfilment of the contract or pre-contract, we process your data if necessary to protect the legitimate interests of us or third parties, including for the following purposes:
- the further development of services and products as well as existing systems and processes;
- the collection of information and data exchange with credit agencies, insofar as this goes beyond our economic risk;
- the audit and optimisation of procedures for needs analysis;
- the further development of services and products as well as existing systems and processes;
- the advertising or market - and opinion research, insofar as you have not objected to the use of your data;
- the disclosure of personal data in the context of a due diligence in company sale negotiations;
- to the comparison of with European and international anti-terror lists, insofar as this goes beyond statutory obligations;
- the enrichment of our data, including through use of or research of publicly accessible data;
- statistical analyses or the market analysis;
- benchmarking;
- the assertion of legal claims and defence in legal disputes that are not directly attributable to the contractual relationship;
- the restricted storage of data if deletion is not possible or only possible with disproportionate effort due to the special type of storage;
- the development of scoring systems or automated decision-making processes;
- the prevention and investigation of criminal offences, insofar as not exclusively for the fulfilment of legal requirements ;
- fraud prevention;
- building - and plant security (e.g. through access controls and video surveillance ), insofar as this goes beyond the general duties of care;
- internal and external investigations, security checks ;
- possible observation or recording of telephone conversations for quality control and training purposes;
- the receipt and the maintenance of certifications of a private law or official nature;
- the security and exercise of domiciliary rights through appropriate measures as well as through video surveillance for protection of our customers and employees as well as for securing of evidence in the event of criminal offences and their prevention.
If you would like to receive further information on these legitimate interest purposes, you can contact us or our data protection officer at any time.
2.3 Purposes in the context of your consent (Art. 6 para. 1 sentence 1 lit. a) GDPR or Art. 31 para. 1 DSG
Processing of your personal data for specific purposes (e.g. use of your email address for marketing purposes and to carry out an evaluation of the shopping experience, including bonus - and benefit programmes) may also take place on the basis of your consent. You can revoke your consent at any time. This also applies to the revocation of declarations of consent that were given to us before the GDPR came into force, i.e. before 25 May 2018. You will be informed separately about the purposes and the consequences of revocation or non-granting of consent in the corresponding text of the consent.
Revocation of consent only takes effect for future activity. Processing that took place before revocation is not affected by this and remains lawful.
2.4 Purposes for fulfilment legal requirements (Art. 6 para. 1 sentence 1 lit. c) GDPR or Art. 31 para. 1 DSG ) or in the public interest (Art. 6 para. 1 sentence 1 lit. e) GDPR or Art. 31 para. 1 DSG )
Like everyone involved in business activities, we are also subject to a large number of legal obligations. These are primarily statutory requirements (e.g. trade and tax laws), but also regulatory or other official requirements (e.g. court judgements). The purposes of processing may include identity - and age verification, fraud - and money laundering prevention, prevention , combating and investigation of terrorist financing and offences that endanger assets, comparisons with European and international anti-terror lists, the fulfilment of tax law control - and reporting obligations as well as the archiving of data for purposes of data protection and data security as well as the audit by tax - and other authorities. In addition, the disclosure of personal data may become necessary in the context of official/judicial measures for purposes of gathering evidence, criminal prosecution or enforcement of civil law claims .
3. The categories of data processed by us , insofar as we do not receive data directly from you, and their origin
Insofar as this is necessary for the provision of our services, we process personal data permissibly received from other companies or other third parties (e.g. credit agencies, address publishers ) . We also process personal data that we have legitimately taken, received or acquired from publicly accessible sources (e.g. telephone directories, commercial and association registers, population registers, debtor directories) and are authorised to process.
Relevant personal Data categories can be in particular
- Personal data (name, date of birth, place of birth , gender , nationality , marital status , profession / industry and comparable data)
- Contact details (address , e-mail address , telephone number and comparable data)
- Address data (Registration data and comparable data)
- Payment/ Confirmation of cover at Bank - and credit cards
- Information about your financial situation (creditworthiness data including scoring , i.e. data for assessment of the economic risk)
- Customer history, Order history including the ready-made sizes
- Data about your use of the telemedia offered by us (e.g. time of the call of our websites , apps or newsletter , IP address , clicked pages / links from us or entries and comparable data)
4. Recipients or categories of recipients of your data
Within the group of companies named under section 1, those internal departments or organisational units receive your data which they require for the fulfilment of our contractual and legal obligations or in the context of processing and implementation of our legitimate interests (for more details, see section 1).
In addition, your data will only be passed on to external bodies
- in the context of contract processing (e.g. payment service providers);
- in connection with promotions of Jack Wolfskin stores to Jack Wolfskin store operators;
- insofar as you have a customer account or participate in a Jack Wolfskin loyalty programme , in connection with the registration to your customer account or a Jack Wolfskin loyalty programme as well as your purchase at a participating Jack Wolfskin Store or the official Jack Wolfskin Online Shop to Jack Wolfskin Store Operator;
- to fulfill legal requirements , or if the data disclosure is in the public interest (see section 2.4);
- insofar as external service providers process data on our behalf as processors or function providers (e.g. external data centres , support / maintenance of IT/ IT applications , providers of evaluation -, chat - and comment functions , archiving , Document processing , Call centre services , Compliance services , Controlling , Data screening for Anti-money laundering purposes , Data validation and - plausibility check, data destruction , purchasing / procurement , customer management , lettershops , marketing , media technology , research , risk controlling , billing , telephony , website management , auditing services , credit institutions , printing companies or companies for data disposal , courier services , logistics);
- on the basis of our legitimate interest or the legitimate interest of the third party for the framework of the purposes mentioned under section 2.2 (e.g. to authorities , credit agencies , debt collection , lawyers , courts , experts , group members e.g. to authorities , credit agencies , debt collection , lawyers , courts , experts , affiliated companies and bodies and supervisory authorities);
- if you have given us consent for transmission to third parties.
We will not pass on your data to third parties beyond this. Insofar as we commission service providers within the framework of order processing , your data is subject to the same security standards, and the recipients may only use the data for the purposes for which they were transmitted to them.
5. Duration of the storage of your data
We process and store your data for the duration of our business relationship . This also includes the initiation of a contract (pre-contractual legal relationship ) and the fulfilment of a contract.
In addition, we are subject to various legal retention and documentation obligations , which result from the German Commercial Code (HGB) and the German Fiscal Code (AO), among others. The deadlines for storage and documentation specified in the respective legal order are up to ten years beyond the end of the business relationship or the pre-contractual legal relationship .
Furthermore, special statutory provisions may require a longer retention period , such as the preservation of evidence within the framework of the statutory statute of limitations . According to §§ 195 ff. of the German Civil Code (BGB), the regular limitation period is three years ; however, limitation periods of up to 30 years may also be applicable.
If the data are no longer required for the fulfilment of contractual or legal obligations and rights , they are regularly deleted unless their - temporary - further processing is necessary for the fulfilment of the purposes listed under section 2.2 due to an overriding legitimate interest . Such an overriding legitimate interest also exists, for example, if deletion is not possible or only possible with disproportionately high effort due to the special type of storage and processing for other purposes is excluded by suitable technical and organisational measures.
6. processing of your data in a third country or by an international organisation
In addition to data processing in a third country in accordance with Section 1, data may be transferred to bodies in countries outside the European Union (EU) or the European Economic Area (EEA) (so-called third countries ) or Switzerland if it is necessary in connection with a order / contract from or with you should be necessary, it is required by law (e.g. tax law reporting obligations ), it is in the context of a legitimate interest of us or a third party or you have given us consent . In this context, the processing of your personal data in a third country may also take place in connection with the involvement of service providers as part of order processing.If there is no decision of the EU Commission on an adequate level of data protection for the relevant country , we guarantee in accordance with the EU data protection requirements through corresponding contracts in accordance with Art. 46 para. 2 lit. c) GDPR, and Art. 16 para. 2 lit. d FADP that your rights and freedoms are adequately protected and guaranteed. We will provide you with the relevant detailed information upon request .
Information on the appropriate or adequate safeguards and on the possibility to obtain a copy from you can be obtained on request from the company data protection officer .
7. Your data protection rights
Under certain conditions, you can assert your data protection rights.
- For example, you have the right to receive information from us about your data stored by us in accordance with the rules of Art. 15 GDPR (possibly with restrictions according to § 34 BDSG) or Art. 25 DSG (possibly with restrictions according to Art. 26 DSG).
- At your request , we will rectify the data stored about you via in accordance with Art. 16 GDPR or Art. 32 para. 1 DSG if they are inaccurate or incorrect.
- If you wish, we will delete your data in accordance with the principles of Art. 17 GDPR or Art. 32 para. 2 lit. c FADP, provided that other legal regulations (e.g. statutory retention obligations or the restrictions pursuant to Section 35 BDSG) or an overriding interest on our part (e.g. for defence of our rights and claims ) do not prevent this.
- Under consideration of the requirements of Art. 18 GDPR or Art. 32 para. 2 lit. a DSG, you can request from us to restrict the processing of your data .
- Furthermore, you can lodge an objection against the processing of your personal data in accordance with Art. 21 GDPR , on the basis of which we must terminate the processing of your data . However, this right to object applies - with the exception of direct marketing in accordance with Art. 21 para. 2 GDPR - only in the case of very special circumstances of your personal situation , whereby rights of our company may conflict with your right to object . We provide further details on the right to object in section 1 0.
- You also have the right , to receive your data under the conditions of Art. 20 GDPR in a structured, commonly used and machine-readable format or to transmit them to a third party or, in accordance with Art. 16 of the Swiss Data Protection Ordinance (DPA), to provide them in writing or in the form in which the data are available.
- You have the right to withdraw your consent to in the processing of personal data at any time with effect for the future (see section 2.3).
- Furthermore, you have a right to lodge a complaint with a data protection supervisory authority (Art. 77 GDPR). You can also contact our data protection officer at any time in confidence. There is no right to lodge a complaint with the Swiss Data Protection Officer .
Your requests about the exercise of your rights may be sent in writing to our mailing address or directly to our data protection officer.
8. scope of your obligations to provide us with your data
You only need to provide those data which are necessary for the initiation and execution of a business relationship or for a pre-contractual relationship with us or which we are legally obliged to collect . Without this data we will generally not be able to conclude or execute the desired contract or to fulfil our legal obligations . This may also relate to data required later in the context of the business relationship . If we also request data from you , you will be informed separately of the voluntary nature of the information .
9. existence of automated decision-making in individual cases (including profiling )
Jack Wolfskin does not use any purely automated decision-making processes in accordance with Article 22 GDPR or Art. 5 lit. g DSG. If such a procedure is used via third-party providers (e.g. for payment processing), we will inform you about this separately if this is required by law.
We process your data partly with the aim to evaluate certain personal aspects (e.g., profiling ).
In order to inform and advise you in a targeted manner about products , we may use evaluation technologies and procedures that are described in more detail in our extended privacy policy for our website . These enable needs-based product design , communication and advertising including market and opinion research .
Such procedures can also be used to assess your credit rating and creditworthiness as well as to combat money laundering and fraud . So-called " score values " can be used to assess your creditworthiness and creditworthiness . In the case of scoring , the probability is calculated by using mathematical procedures with which a customer will fulfil his payment obligations in accordance with the contract. Such score values thus support us, for example, in the assessment of creditworthiness , the decision-making in the context of product transactions and are incorporated into our risk management . The calculation is based on mathematically-statistically recognised and proven procedures and is carried out on the basis of your data , in particular income , expenditure , existing liabilities , occupation , employer , length of employment , experience from the previous business relationship , contractual repayment of previous loans and information from credit agencies .
This does not include processing Information on nationality and special categories personal data in accordance with Art. 9 GDPR and Art. 5 lit. c FADP.
10. detailed information about your right to object Art . 21 GDPR
1. You have the right to object at any time to the processing of your data which is based on Art. 6 para. 1 f GDPR ( data processing on the basis of a balancing of interests ) or Art. 6 para. 1 e GDPR ( data processing in the public interest ), to object if reasons exist that arise from your particular situation . This also applies to profiling based on this provision within the meaning of of Art. 4 No. 4 GDPR.
If you lodge an objection , we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for ththe assertion , exercise or defence of legal claims.
2. We process your personal data if necessary also to operate direct advertising . If you do not wish to receive advertising , you have the right to object at any time ; this also applies to profiling , insofar as it is associated with such direct advertising . We will observe this objection for the future . We will no longer process data for purposes of direct marketing if you object to processing for these purposes.
The objection can be made informally may be addressed to
Jack Wolfskin Retail GmbH
Jack Wolfskin Kreisel 1
65510 Idstein/Ts.
Or by e-mail to : datenschutz@jack-wolfskin.com
Our privacy policy and the information on data protection about our data processing in accordance with Article (Art.) 13, 14 and 21 GDPR or Art. 19 and 20 DSG may change from time to time . We will publish all changes on this page . We will make older versions available to you for inspection in a archive.
Status of data protection information July 2024
The companies named in Part 1; Section 1 are responsible for this website and the internet-based services and applications (hereinafter " website " )
The following privacy policy gives you an overview of the way in which uses and protects your personal data when you visit our website .
1. Collection, processing and use of personal data
In some cases such as registration and use (e.g. login) of your customer account , the completion of forms , during the order process or for service enquiries , you will expressly transmit your data to us.
Your data will be processed for the purposes described in part 1 section 2 , unless further or other information is provided in below .
Therefore, depending on case , we will use and process the following of your data :
- your contact information ( e.g. name, address, e-mail address, telephone number);
- Information for fulfilment of your order (e.g. information on ordered products , delivery - and invoice details as well as payment information such as bank -, credit cards or other payment details );
- Information on orders and services (e.g. order and contact details / order history ; details on defective products , previous correspondence );
- During the processing of an order, the date of your birthday may be sent to our payment providers for purposes of verification and/or for compliance checks
- Sometimes your telephone number is stored when orders are processed
- Other information that you have expressly made available to us (e.g. your personal profile , registration data product references , wish lists / wish lists , reviews and comments , chat messages , data in connection with bonus - and benefit programmes (e.g. Jack WolfskinCard) etc.).
Please note that only personal details are sent to us that are indicated as "mandatory".Information termed as "optional" is only sent from you to us on a voluntarily basis.
We process any personal data that you make available to us through the use of our website in accordance with the manner described in our data protection notice.
2. creation of a customer account
You can open a customer account at www.jack-wolfskin.com You can also create a digital account in our stores. The creation of such an account and thus the conclusion of a user contract for the creation of the customer account is voluntary and is based on Art. 6 para. 1 lit. b GDPR.As long as your customer account exists, the data you have provided in your previous orders will be stored there in addition to your orders. The customer account can be cancelled at any time by sending an email to: info@jack-wolfskin.com. In order to create a a) guest or b) customer account, personal data is requested which we require to a) fulfil the order or b) create your customer account and which enables you to open and use your account.
The specific data collected depends on whether you register as a guest or create a customer account. The following data can be collected and used to create a customer account:
- First and last name (optional)
- E-mail address (mandatory)
- Telephone number(voluntary)
- Address (optional)
You have the option of changing or deleting the data stored in your customer account at any time.When selecting the payment method "card payment", you add a link to your card information to your customer account so that you do not have to enter the card information again when placing new orders. The storage of this link is in our legitimate interest and for the purpose of offering you this convenient function and is based on Art. 6 para. 1 lit. f GDPR. We do not store your card data ourselves. Our PCI DSS-certified payment service provider Adyen N.V., Simon Carmiggeltstraat 6-50, 1011 DJ Amsterdam, Netherlands, is responsible for storing and processing the card information. To prevent misuse in the event of unauthorised access, the full card number is never visible in your customer account. If you wish to delete a payment card from your customer account, you can do so on the "Payment" page. Please note that if you select this payment option, we may contact you and ask you to send us proof of identity for verification purposes. This serves our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR to protect you and us from card misuse. We will of course only use the proof you send us to verify your identity and delete it after the statutory retention period has expired.
Of course, you can also order from us without opening a customer account. If you wish to do so, simply select the "Order as a guest" option. If you order from us without a customer account, we will process your data as described above to fulfil the purchase contract and for warranty purposes.
2.3 Marketing
We use the services of SAIZ on our website(SAIZ GmbH, Nostiltzstr. 23, 10961 Berlin, Germany) (hereinafter: “SAIZ”).SAIZ collects, processes and stores the personal details of visitors to our website in order to provide personalised size and fit recommendations, statistical analysis and business cost optimisation.In this respect, when visitors come to our website and consent to having their personal data (as described below) processed by SAIZ, the following information, in particular, is processed:
• Age• Gender• Height in cm• Chest size• Hip size• Waist size• Weight• Information on body physique and body shape• IP address• Browser information• Date and time of access• Referrer URL• Session ID• Time stamp• Anonymised usage data• Purchase information• Device’s operating system
SAIZ collects this data using persistent cookies that remain on the user’s device who has visited the website.SAIZ stores the profiles of the respective visitor in the local browser of the visitor to the website.The data, thereby collected, is processed by SAIZ in the European Union.
Provided the aforementioned data is neither required by law nor prescribed in contracts, and is not required for concluding contracts, there is no obligation to provide this data.Where the aforementioned data is not provided, we are unable to provide the content that has been requested, nor are we able to make a size recommendation.
The purposes of collecting and processing data by SAIZ are:
• Calculating size (size recommendation, testing the fit of the products)• Promoting sales and/or increasing turnover by means of cost optimisation (size recommendation, testing the fit of theproducts)• Marketing purposes (customisation and testing the fit) as well as• Analysis purposes (conversion tracking).
The recipient of the data collected is SAIZ GmbH and their external service providers:
▪ DataDog Inc.▪ Microsoft Corp.▪ Google LLC▪ Amazon Web Services Inc
whereby, in connection with the use of these service providers, it has ensured, through appropriate agreements with said external service providers, that the personal data collected is stored on servers in the EU. Nevertheless, it cannot be completely guaranteed that there will be no data transfer to a third country in the course of SAIZ deploying service providers as their subcontractors.
Should there be a processing of personal data in a third country, this may only take place if the special requirements of Art. 44 et seq. GDPR are fulfilled. This includes, in particular, the conclusion of standard data protection clauses ("EU-SCC"), and a so-called "Transfer Impact Assessment" ("TIA") was carried out by SAIZ.The necessary legal basis for the processing personal data by SAIZ is Article 6 (1) 1a GDPR (consent). In other words, the personal data of the respective visitor to the website will only be processed with the prior consent of the visitor to the website.
This consent is obtained via the cookie banner. You can revoke, at any time, your consent to cookie banners. The visitor’s personal data will be deleted as soon as the processing purposes for which they were collected have been achieved, or you have revoked your consent to the collection of data. For further information on the duration of storage, please refer to the website via the cookie banner/cookie settings. You can revoke your consent to having your data processed at any stage via the cookie banner.
Further information on data processing by SAIZ can be found at:
https://www.saiz.io/datenschutz
3. payment processing
We offer you the most common payment methods in online trading.
Here you will find an overview of the respective payment methods in the various countries:
-
- 3. Apple Pay
https://support.apple.com/en-euro/HT203027
- 4. Google Pay
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=en
- 5. PayPal (PayPal Express)
https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=en_EN
- 6. Klarna pay later (purchase on account)
https://www.klarna.com/be/privacy/
- 7. Bancontact (Mobile + App)
https://www.bancontact.com/files/privacy.pdf
- 8. Card payment (Visa, Mastercard, Amex, Discover, Diners, Carte Bancaire)
- 4. Google Pay
- 3. Apple Pay
-
- 9. Apple Pay
https://support.apple.com/de-de/HT203027
- 10. Google Pay
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=de
- 11. PayPal (PayPal Express)
https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=de_DE
- 12. Klarna pay later (purchase on account)
https://www.klarna.com/de/datenschutz/?
- 13. Klarna pay over time / slice it (hire purchase)
https://www.klarna.com/de/datenschutz/?
- 14. Instant bank transfer (Klarna)
https://www.klarna.com/de/datenschutz/?
- 15. Card payment (Visa, Mastercard, Amex, Discover, Diners, Carte Bancaire)
- 16. Gift card
- 10. Google Pay
- 9. Apple Pay
-
- 17. Apple Pay
https://support.apple.com/en-euro/HT203027
- 18. Google Pay
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=en
- 19. PayPal (PayPal Express)
https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=en_EN
- 20. Klarna pay later (purchase on account)
https://www.klarna.com/fi/tietosuoja/
- 21. Klarna pay over time / slice it (hire purchase))
hhttps://www.klarna.com/fi/tietosuoja/
- 22. Card payment (Visa, Mastercard, Amex, Discover, Diners, Carte Bancaire)
- 18. Google Pay
- 17. Apple Pay
-
- 23. Apple Pay
https://support.apple.com/en-euro/HT203027
- 24. Google Pay
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=en
- 25. PayPal (PayPal Express)
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=en
- 26. Klarna pay over time / slice it (hire purchase)
https://www.klarna.com/fr/confidentialite/
- 27. Card payment (Visa, Mastercard, Amex, Discover, Diners, Carte Bancaire)
- 24. Google Pay
- 23. Apple Pay
-
- 28. Apple Pay
https://support.apple.com/en-euro/HT203027
- 29. Google Pay
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=en
- 30. PayPal (PayPal Express)
https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=en_EN
- 31. Klarna pay over time / slice it (hire purchase)
https://www.klarna.com/ie/privacy/
- 32. Card payment (Visa, Mastercard, Amex, Discover, Diners, Carte Bancaire)
- 29. Google Pay
- 28. Apple Pay
-
- 33. Apple Pay
https://support.apple.com/en-euro/HT203027
- 34. Google Pay
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=en
- 35. PayPal (PayPal Express)
https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=en_EN
- 36. Klarna pay over time / slice it (hire purchase)
https://www.klarna.com/it/privacy/
- 37. Card payment (Visa, Mastercard, Amex, Discover, Diners, Carte Bancaire)
- 34. Google Pay
- 33. Apple Pay
-
- 38. Apple Pay
https://support.apple.com/en-euro/HT203027
- 39. Google Pay
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=en
- 40. PayPal (PayPal Express)
https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=en_EN
- 41. Klarna pay later (purchase on account)
https://www.klarna.com/nl/privacy/
- 42. Klarna pay over time / slice it (hire purchase)
https://www.klarna.com/nl/privacy/
- 43. iDeal
https://www.ideal.nl/en/ideal-privacy-cookiestatement
- 44. Card payment (Visa, Mastercard, Amex, Discover, Diners, Carte Bancaire)
- 39. Google Pay
- 38. Apple Pay
-
- 45. Apple Pay
https://support.apple.com/en-euro/HT203027
- 46. Google Pay
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=en
- 47. PayPal (PayPal Express)
https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=en_EN
- 48. Klarna pay later (purchase on account)
https://www.klarna.com/at/datenschutz/
- 49. Klarna pay over time / slice it (hire purchase)
https://www.klarna.com/at/datenschutz/
- 50. Instant bank transfer (Klarna)
https://www.klarna.com/at/datenschutz/
- 51. Card payment (Visa, Mastercard, Amex, Discover, Diners, Carte Bancaire)
- 52. Gift card
- 46. Google Pay
- 45. Apple Pay
-
- 53. Apple Pay
https://support.apple.com/en-euro/HT203027
- 54. Google Pay
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=en
- 55. PayPal (PayPal Express)
https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=en_EN
- 56. Klarna pay later (purchase on account)
https://www.klarna.com/pl/prywatnosc/
- 57. Klarna pay over time / slice it (hire purchase)
https://www.klarna.com/pl/prywatnosc/
- 58. Card payment (Visa, Mastercard, Amex, Discover, Diners, Carte Bancaire)
- 59. Online Banking PL (P24)
https://www.przelewy24.pl/en/information-obligation-gdpr-payer
- 60. BLIK
https://blik.com/media/PRIVACY_POLICY_AND_COOKIES_POLICY.pdf
- 54. Google Pay
- 53. Apple Pay
-
- 61. Apple Pay
https://support.apple.com/en-euro/HT203027
- 62. Google Pay
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=en
- 63. PayPal (PayPal Express)
https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=en_EN
- 64. Card payment (Visa, Mastercard, Amex, Discover, Diners, Carte Bancaire)
- 62. Google Pay
- 61. Apple Pay
-
- 65. Apple Pay
https://support.apple.com/en-euro/HT203027
- 66. Google Pay
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=en
- 67. PayPal (PayPal Express)
https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=en_EN
- 68. Klarna pay later (purchase on account)
https://www.klarna.com/ch/datenschutz/
- 69. Instant bank transfer (Klarna)
https://www.klarna.com/ch/datenschutz/
- 70. Card payment (Visa, Mastercard, Amex, Discover, Diners, Carte Bancaire)
- 71. TWINT
- 66. Google Pay
- 65. Apple Pay
-
- 72. Apple Pay
https://support.apple.com/en-euro/HT203027
- 73. Google Pay
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=en
- 74. PayPal (PayPal Express)
https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=en_EN
- 75. Klarna pay over time / slice it (hire purchase)
https://www.klarna.com/es/privacidad/
- 76. Card payment (Visa, Mastercard, Amex, Discover, Diners, Carte Bancaire)
- 73. Google Pay
- 72. Apple Pay
-
- 77. Apple Pay
https://support.apple.com/en-euro/HT203027
- 78. Google Pay
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=en
- 79. PayPal (PayPal Express)
https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=en_EN
- 80. Klarna pay later (purchase on account)
https://www.klarna.com/uk/privacy/
- 81. Klarna pay over time / slice it (hire purchase)
https://www.klarna.com/uk/privacy/
- 82. Card payment (Visa, Mastercard, Amex, Discover, Diners, Carte Bancaire)
- 78. Google Pay
- 77. Apple Pay
We collect the payment data provided by you in order to process the payment.
Payment data are for example:
- Preferred payment method
- Invoice addresses
- IBAN and BIC or account number and sort code
- Credit card details
- Creditworthiness data
The payment data also includes other information that arises in direct connection with payment processing and credit checks. This includes, for example, information that external payment service providers use for identification purposes, such as your PayPal ID (if you pay with PayPal).
For the purpose of payment processing, this payment data is transmitted to our payment service provider, Adyen N.V., Simon Carmiggeltstraat 6-50, 1011 DJ Amsterdam, the Netherlands.
Further information can be found in Adyen’s privacy policy.
We receive further payment data from external payment service providers and credit agencies with whom we work together to process payments and check creditworthiness. We only pass on data to our payment service providers that is necessary for payment processing.
4. credit agencies
Creditworthiness data consists of our own records of your previous payment behaviour towards Jack Wolfskin and of score values that we obtain about you from external credit agencies. They provide information about a person's estimated financial capacity and willingness to pay. This is done for the purpose of preventing payment defaults for Jack Wolfskin.
Creditworthiness data is usually determined by credit agencies. The credit agencies then use the various details to calculate a score, which takes into account existing payment obligations and any previous payment defaults, among other things. Score values are statistically based estimates of a person's future risk of default and are presented as a numerical value, such as a percentage. We only have limited influence on the data processing of external credit agencies (e.g. when we provide credit agencies with information about unfulfilled payment obligations).
Cooperation with external credit agencies is country-specific in order to consider country-specific characteristics and requirements. Under Country-specific information, you can find out in which countries we work with which external payment service providers and credit agencies. There you may also find special data protection notices that we provide to you on behalf of the respective payment service providers and credit agencies.
5. collection service provider
In Germany, Austria and Switzerland, we work with external debt collection service providers exclusively for the purpose of debt collection . For this purpose, we transfer your personal data to Riverty Services GmbH, Gütersloher Str . 123, 33415 Verl.
6. Cookies and associated data processing
We use cookies and similar technologies (e.g., local storage , session storage ), referred to in this privacy policy as " cookies " , which store information on end devices (e.g. notebooks smartphones , tablets ) or access information already stored on end devices . e.g. notebooks, smartphones , tablets ) or access information that is already stored in the end device . In doing so, we are primarily pursuing the general goal of making our website even more user-friendly, effective and secure. Cookies are used, for example, for the navigation and functionality of our website if this is necessary, and, for example to save the current shopping basket status .
In particular, we would like to use so-called session cookies , which are automatically deleted when the browser is closed.
We also use cookies to optimise and improve the online experience on our website . Due to this use, your data may be collected by us, or by a third party commissioned by us, through the mere interaction between your end device and our website . Such data may include, for example (but is not limited to):
- The IP address of your Internet device (e.g. the IP address of your computer ; tablet or similar);
- Information about the use of the website (e.g. time and date of your visit , referral URLs ( referral URLs ), or page views );
- Information about your internet device (e.g. type and version of your internet browser and version of your operating system ).
In connection with the use of such data , user profiles can be generated. For this purpose cookies can also be used.
The storage of information such as through cookies and other technologies in your device or the access to information that is already stored in your device only takes place on the basis of your consent (e.g. § 25 para. 1 TTDSG). A consent is not required if the sole purpose of storing information in your device or the sole purpose of access to information in your device is the execution of the transmission of a message via a public telecommunications network or if this is absolutely necessary, so that we can provide you with a telemedia service that you have expressly requested for .
We have grouped the cookies used on our website into the following categories . You have the option to specify which of the cookie categories you wish to activate and which you wish to deactivate at any time via the cookies–settings function.
6.1 NECESSARY or ESSENTIAL
To ensure the basic functions of our website , such as the shopping basket , cookies are used. Without these cookies our website cannot function. For this reason these settings cannot be deactivated if you wish to use our site .
You can find out more about the technologies, service providers and cookies used via our cookies-settings function.
6.2 FUNCTIONAL AND MARKETING
Cookies help us to personalise our website for users . Based on the last website visit and the knowledge collected there about your behaviour in our webshop , we can use our webshop system to make appropriate product suggestions on our website . For example, the homepage of the website may contain products that were of interest during the last website visit .
The area of personalisation basically involves the use of cookies to improve your user experience in our webshop . In principle, this does not include adverts or advertising measures outside the context to our web shops .
You can find out more about the technologies, service providers and cookies used via our cookies-settings function
6.3 STATISTICS
When you visit the website https://www.jack-wolfskin.com, data from your browser may be collected for statistical analyses . This data may be passed on to various service providers.
You can find out more about the technologies, service providers and cookies used via our cookies-settings function.
7. data storage
We ourselves will store the data received and collected exclusively in member states of the European Union . If we disclose your data to the recipients described in this privacy policy , they may also process your data outside Europe as described. In these cases we have concluded so-called " standard data protection clauses " in accordance with Art. 46 para. 2 lit. c) GDPR or Art. 16 para. 2 lit. d DSG (see also Part 1 , Section 1 and Section 6: Processing of your data in a third country or by an international organisation ). We will take all reasonable technical and organisational precautions to protect your data against unauthorised use or unlawful publication , destruction , loss or unlawful alteration.
8. social plug-ins / social media
Our website links to social media and uses so-called social plug-ins ( " plug-ins " ) of the following social network providers (" provider " ) if you have activated them.
You can find out which social plug-ins and which links to social media we use via our cookies-settings function.
The aforementioned plug-ins give you the opportunity to interact with these social networks (e.g. through likes or posts ) and the users there (e.g. your network or friends ) or to retrieve content (e.g. videos , interactive maps ). e.g. your network or your friends ) or to retrieve content (e.g. videos , interactive maps ).
If you visit a website containing a corresponding plug-in from one of the aforementioned providers and you have activated it with your consent , your Internet browser will automatically be connected to the server of the respective provider . The content of the plug-in is transmitted directly by the provider to your Internet browser , which integrates the data on the website accordingly.
This integration of plug-ins shows the provider which websites you have visited. If you are logged in to the website of the provider , the provider can track your visit on our website and assign it to your account . If you interact with the plug-ins , e.g. by clicking the " Like " button or inserting comments , your Internet browser sends the relevant information directly to the provider , which then stores it.
If you do not want the provider to collect this data through your visit on our website , you should log out before your visit on the website of the provider .
You can also revoke your consent at any time without affecting the legality of the processing until the revocation .
For all further information on collection and use of data as well as your rights and setting options for data - and privacy protection , please refer to the above-linked privacy policy of the respective provider.
9. newsletter
If you would like to receive details of our current offers, we would recommend you subscribing to our newsletter.To register, we use the so-called double opt-in procedure, meaning that you receive the newsletter at your e-mail address, and third parties are unable to use your email address for this purpose. After you have registered, an email is sent to the email address that you have stated, which requires that you confirm that the email address is correct. If we do not receive this confirmation within 72 hours, your data is automatically deleted.
Besides your e-mail address and other information provided by you when registering, we also store your IP address and the time of your logins and, in the case of electronic registration, your confirmation. We store this data to document your registration and to be able to clarify any possible misuse of your personal data. We process your data to send the newsletter (legal basis Art. 6 Para. 1 a) GDPR or Art. 31 Para. 1 DSG).Our newsletter is sent to you via our provider (see below) as part of a commissioned processing contractEmarsys eMarketing Systems GmbH stores your personal details in the EU.For more information on Emarsys eMarketing Systems GmbH data protection policy, please visit: https://emarsys.com/de/datenschutzrichtlinie/
Tracking pixels
Our newsletters contain web beacons or tracking pixels. Cookies are small image files that are stored on our website. When you open the newsletter and download the images, we link your registration data with the specific identification number of the newsletter. This link enables us to evaluate your usage behaviour concerning our newsletter and also our website. This type of tracking is not possible if you deactivate the display of images by default in your email programme (and also do not download images manually), which can lead to the newsletter not being displayed in full or not all functions being usable.The data obtained from tracking is stored for one year from the time you unsubscribed and is then deleted.You may, of course, revoke your consent concerning the receipt of our newsletter as well as the tracking details above at any stage. This is simply done by clicking on the “unsubscribe” link which appears in every newsletter. You can also send an email to datenschutz@jackwolfskin.com or write a letter to the contact address given in the Legal Notice.
Customer match
We collect customer data, including, but not limited to, email addresses, from various sources such as our Customer Relationship Management (CRM) system and the Customer Data Platform (hereinafter: “CDP“). This data is used to improve our marketing measures and your customer experience by tailoring advertising, services and offers to your interests.Provided that you have given us your express consent, we give your personal data in this respect (e.g. email address, first name and surname) to the service provider in charge of our CDP:
Bloomreach B.V.
Fred. Roeskestraat 109
1076 EE, Amsterdam
Netherlands
We signed a data processing agreement with Bloomreach in line with Art 28 GDPR.For details on our Data Protection Regulations, please click here:
For the purpose of customer matching and to display customised advertising, we create so-called customer match lists, meaning that you data stored at Bloomreach may be passed on to our partners. In order to make use of customer match lists, encrypted (i.e. hashed) user data (email address, telephone number, postal address, identifiers specific to a customer) are transferred to our partners and uploaded on their system. Our partners then compare whether the transmitted user data matches the existing data they have. In turn, this can be used to create target groups that can be used to control adverts/campaigns. The process of comparing data can take up to 48 hours. Once the comparison and compliance check have taken place, your data is deleted.
Our partners are:
Meta Platforms Ireland Limited
Block J, Serpentine Avenue, Dublin 4, Ireland
https://www.facebook.com/privacy/policy
Google Ireland Limited
Gordon House, Barrow Street, Dublin 4, Irland
https://business.safety.google/privacy/?hl=de
Microsoft Ireland Operations Limited
One Microsoft Place, South County Business Park,
Leopardstown, Dublin, Irland 18, D18 P521
https://privacy.microsoft.com/de-de/privacystatement
Emarsys eMarketing Systems GmbH
Zeppelinstr. 2
85399 Hallbergmoos
Germany
https://emarsys.com/de/privacy-policy/
This only occurs if we have received your consent. You can revoke your consent at any time with effect from that point onwards. This is simply done by clicking on the “unsubscribe” link which appears in every newsletter. You can also send an email to datenschutz@jackwolfskin.com or write a letter to the contact address given in the Legal Notice.
9.1 WhatsApp newsletter
You can also subscribe to our WhatsApp newsletter, which will keep you informed about our latest offers.
We use the so-called double opt-in procedure for electronic registration for our WhatsApp newsletter so that you can receive the newsletter at your mobile phone number and third parties do not use your mobile phone number for this purpose. This means that after you register, you will receive a message in WhatsApp asking you to confirm your registration.
In addition to your mobile phone number and the other information you provide when registering, we also store the time of your registration and confirmation. We store this data in order to document your registration and to be able to clarify any possible misuse of your personal data. We also use this data to recognise you and your preferences and to reply to your WhatsApp messages. The legal basis is your consent to be contacted in accordance with Art. 6 (1) (a) GDPR. We will also send you newsletters via WhatsApp if you have given us your consent to do so. We process your data to send the newsletter (legal basis Art. 6 (1) (a) GDPR) and Art. 31 (1) FADP.
You can revoke any consent you have already given at any time, effective for future interactions. The easiest way to revoke your consent at any time is to reply to the word "Stop" in the WhatsApp chat. You can also send us an email to info@jack-wolfskin.com or a letter to the contact address given in the legal notice. According to the GDPR, you also have the right to information, correction, transferability and deletion of your personal data as well as the right to restrict or object to certain processing. You also have the right to lodge a complaint with the supervisory authority responsible for you.
For the WhatsApp chat, we use Hello Charles, a software solution from Charles GmbH, Gartenstr. 86-87, 10115 Berlin, Germany, as part of a data processing agreement. Charles stores all personal data in the EU. As an official WhatsApp partner, Charles uses the WhatsApp Business API, which means that no other third parties or WhatsApp have access to your communication content within our area of responsibility.The use of WhatsApp by the respective user is governed exclusively by the agreements made by the user with the WhatsApp provider.
For further information, please refer to our data processors:
Charles GmbH: https://www.hello-charles.com/de-de/wiki/whatsapp-newsletter/
WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland: https://www.whatsapp.com/legal/privacy-policy-eea
10. customer service platform GUURU
We use a crowd-based customer service platform called "GUURU" from the provider Guuru AG, Bösch 67, 6331 Hünenberg, Switzerland, e-mail: dataprotection@guuru.com (hereinafter "Provider").For this purpose, the provider makes an online chat available and carries out evaluations on our behalf.
If you use the provider’s services, you generally send the following personal details to GUURU:
- Name you have written
- Email address
- IP address
- Document data.
Furthermore, details are sent to GUURU that you have actively and voluntarily sent to GUURU.
The legal basis is your express consent Art. 6 para. 1 lit. a). You can revoke your consent at any time with effect for the future by sending an email to datenschutz@jack-wolfskin.com.The provider also uses cookies. The personal data is processed by the provider in the European Union and in Switzerland and deleted as soon as it is no longer required for the processing purposes.
The provider's privacy policy is available as follows: https://www.guuru.com/de/privacy-policy/
Status of data protection information July 2024
We process personal data that is collected when you visit our respective social media pages (e.g. Facebook fan page, Instagram/Pinterest) confidentially in accordance with the statutory provisions.Jack Wolfskin is jointly responsible with the operator of the social media site for the processing of your data on the respective social media site. Insofar as the processing of this data takes place within our area of responsibility, we are available to answer any questions you may have on the subject of data protection and to exercise your rights in accordance with the information in this data protection information.
Data processing by the social media service
The social media service processes your personal data as soon as you use our respective social media site. Processing takes place in the following cases in particular:
- Calling up a page, a post or a video from a page
- Subscribe or unsubscribe to a page
- Mark a page or a post with "Like" or "No longer like" or similar functions
- Recommend a page in a post or comment
- Comment on, share or react to a page post (including the type of reaction)
- Hide a page post or report it as spam
- Clicking on a link from another page on the social media provider or from a website outside the social media provider that leads to the page
- Move the mouse over the name or profile picture of a page to see a preview of the page content
- use functions of the social media provider, such as the website button, telephone number button, "Plan route" button or another button on a page
- The information as to whether the login takes place via a computer or a mobile device.
Since we have no influence on the data processing of the respective social media provider, you can find out on the websites of the respective social media provider how your personal data is processed and how you can assert your rights as a data subject within the meaning of the GDPR.
- a) Facebook Ireland Ltd, 4 Grand Canal Square Grand Canal Harbour, Dublin 2, Ireland; http://www.facebook.com/policy.php; its parent company Meta Platforms, Inc., has certified to the EU-US Data Privacy Framework and to the Swiss-US Data Privacy Framework.
- b) X Corp. (formerly known as Twitter), Inc, 1355 Market St, Suite 900, San Francisco, California 94103, USA; https://twitter.com/privacy.
- c) Instagram, provided by Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland, https://help.instagram.com/519522125107875; its parent company Meta Platforms, Inc., has certified to the EU-US Data Privacy Framework and to the Swiss-US Data Privacy Framework.
- d) Pinterest Europe Ltd, Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland, https://policy.pinterest.com/en/privacy-policy.
- e) LinkedIn for countries of the European Union (EU), the European Economic Area (EEA) and Switzerland: LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland and for all other countries: LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA. LinkedIn Corporation has certified to the EU-US Data Privacy Framework and to the Swiss-US Data Privacy Framework..
- f) Xing SE, Dammtorstraße 30, 20354 Hamburg, Germany, https://privacy.xing.com/en/privacy-policy.
- g) Youtube Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. We have integrated YouTube videos on our website, which you can access directly from our website via youtube.com. To be able to access videos on our website, you must activate the respective video with your consent. No data will be transmitted to YouTube without your consent. We use plug-ins from YouTube, which is operated by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. These plug-ins are identified by the YouTube logo. You can find the YouTube privacy policy here: https://www.youtube.com/static?&template=privacy_guidelines.
- h) Tik Tok Technology Ltd, 10 Earlsfort Terrace, Dublin D02 T380, Ireland. You can find TikTok's privacy policy here: https://www.tiktok.com/legal/page/eea/new-privacy-policy/de-DE.
Data processing by Jack Wolfskin:
As part of our social media company page ("fan page"), the social media provider grants us access to the following data categories:
- We process this data solely for the purpose of making content on our social media website known to specific target groups and to better understand and optimise the use of our social media website.
- We can set the target group to be reached for the fan page or for individual published posts. The setting is based on general parameters (e.g. age group, language, region, interests), which can be used to target our content to specific groups. Based on the data provided to us by the social media provider, it is not possible for us to address or identify individual persons.
- statistical analyses that provide information about the use of our social media website. The analyses visible to us do not allow us to analyse the usage behaviour of individual persons. We can only view aggregated data (e.g. number of hits, likes, followers, region of origin, age group, gender) that provide information about our audience and the use of our fan page. The data of the respective user on which the analyses are based is not transmitted to us.
- If you contact us directly via the social media provider or interact with us in any other way and deliberately transmit personal data (e.g. direct linking to our social media website), we store and process this personal data for the purposes for which you have transmitted it to us.
Jointly responsible:
We are responsible for data protection with the above-mentioned social media operators and have concluded an agreement with them regarding the processing in joint responsibility in accordance with Art. 26 GDPR. This agreement serves in particular to fulfil our responsibility to protect your personal data and to clearly regulate the associated tasks.
If you have any questions about our social media practices, you can contact us at socialmedia@jack-wolfskin.com.
Status of data protection information July 2024
Data protection statement from 17 May 2024 Data protection statement from 11 March 2024 Data protection statement from 31 October 2023 Data protection statement from 16 January 2023 Data protection statement from 26 April 2022 Data protection statement from 01 March 2022 Data protection statement from 20 September 2021 Data protection statement from 11 March 2021 Data protection statement from 3 September 2020 Data protection statement from 27 March 2019 Data protection statement from 1 October 2018 Data protection statement from 27 September 2018 Data protection statement from 27 August 2018 Data protection statement from 18 July 2018 Data protection statement from 24 May 2018 Data protection statement from 15 May 2018 Data protection statement for our website from August 2015