The RGPD replaces the current EU data protection framework of 1995 (commonly known as the “Data Protection Directive”). The Data Protection Directive required a transposition into EU member state law, which led to a fragmented landscape of EU data protection legislation. The RGPD is an EU regulation that has a direct legal effect in all EU Member States, i.e. it does not need to be transposed into the national law of EU Member States to become compulsory. This will improve the coherence and harmonious application of legislation in the EU. The way we process data is based on four reasons for processing: (i) the execution of the sales contract between you and us for one or more items, (ii) for the performance of one or more of our legal obligations, (iii) your consent and (iv) our legitimate interest. These transformation patterns can be combined, if necessary. If we seek your consent, you can revoke it at any time. Our legitimate interest is our interest in selling you items and ensuring that those items are as desired. For example, if we confirm that your personal data is not related to fraudulent use of a credit card or excessive credit card fees, we must wait until we do not provide them with an item without receiving the purchase price. We work hard, 😉 We make reasonable efforts to ensure a level of security that is appropriate to the risks associated with the handling of personal data.
We take organizational, technical and administrative measures to protect personal data within our organization from unauthorized access, destruction, loss, tampering or abuse. Your personal data is only accessible to a limited number of employees who need access to the information to perform their duties. Unfortunately, no data transfer or storage system can be guaranteed to be 100% sure. If you have reason to believe that your interaction with us is no longer safe (for example.B. if you feel your account security is compromised), please contact us immediately. Stripe has certain data processing activities for which it is responsible for processing and other data processing activities. A good example of this dual role is when Stripe processes credit card transactions. Facilitating a transaction requires processing personal data such as the cardholder`s name, credit card number, credit card expiry date and CVC code.