Don't miss any news - subscribe to our newsletter here

Data protection


Status as of October 19th, 2022

We appreciate your interest in our website and in our company. The protection of your privacy is very important to us. We adhere to the requirements of the DSGVO and process data according to its principles.

Below we inform you in detail about our company and how we handle your data.

1. Who is responsible for data processing and how can you contact us?

Steiner GmbH & Co KG
Mandling 90 
A 8974 Mandling 

Phone: +43 6454 7203 270 
E-Mail: office@steiner1888.com 

UID-No.: ATU53319403 

The company Steiner GmbH & Co KG (hereinafter referred to as Steiner1888) is an Austrian company, operator of the Steiner1888 website and all online presence and is operationally responsible for the content of the website and all Steiner1888 stores. 

2. Scope of application of the data protection declaration 

This privacy policy applies to all websites of Steiner1888 as well as to all other online presences, including social media pages, in particular the Facebook fan page. 

3. Which data does Steiner1888 process and where does the data come from? 

a) Where does Steiner1888 get personal data from? 

Data is collected by us, e.g. through your input on our website or we receive it from a third party, e.g. through an order via Amazon or Ebay or via Facebook Connect. Furthermore, we may process data that we receive from publicly available sources. 

b) What data does Steiner1888 process? 

Steiner1888 processes in the sense of data minimization only those data that are required for the performance of the contract, fulfillment of legal obligations or in the context of legitimate interests, or if you give us your express consent to do so. As far as possible, Steiner1888 (pseudo)anonymizes your data. Read more about this under point 11. security precautions. Steiner1888 does not process special categories of data of its customers according to Art. 9 DSGVO. 

Personal data processed by Steiner1888 include: 

- Personal data such as name, address, birthday, place of birth, nationality. 

- Physical data such as clothing size, shoe size, but only to the extent that from this no identification of your person is possible. 

- Contact data such as telephone number & e-mail address 

- Data and information from electronic traffic such as IP addresses, cookies, pixels, apps, etc; 

- Order data of orders 

- Advertising and sales data 

- General communication data such as inquiries and consultations via Customer Service. 

- Data obtained by Steiner1888 itself or via partners, such as purchasing behavior, payment behavior and interests 

- Data for the fulfillment of legal and official obligations 

- Data for the fulfillment of contractual obligations such as warranty or guarantee 

- Credit card data only in the context of abuse control 

- Other account data only in the context of remittances 

4. For what purpose do we process data and on what legal basis (justification) do we do so? 

Steiner1888 wants to offer you the best possible product range and the best possible selection of products and services, tailored to your preferences and interests. We process the data on the basis of the stated legal grounds and the associated purposes. 

a) For the fulfillment of (pre-)contractual obligations (Art. 6 para. 1 lit. b DSGVO) 

- Fulfillment of your purchase according to our general terms and conditions 

- Advice and clarification during the purchase 

- Provision of services such as travel and courses 

b) To protect the legitimate interests of Steiner1888 or a third party (Art. 6 para. 1 lit. f) 

In order to provide you with flawless shopping in our webshop and stores, the best service and advice and to inform you about products, trends, innovations and services, we collect, store, process and analyze the data listed. Legitimate interest of Steiner1888 or a third party is thereby: 

- Carrying out marketing activities, in particular personalized advertising in cooperation with third parties, e.g. advertising partners. 

- Implementation of loyalty programs for customers 

- Provision of a customer account and customer profile on the websites of Steiner1888 

- Processing and storage of communication contents of mail, telephone or other communication (e.g. in case of complaints, requests for information according to point 6) 

- Analysis of purchasing behavior by Steiner1888 and advertising partners 

- Monitoring measures to protect employees, customers and property of Steiner1888, suppliers and other partners 

- Enforcement of legal claims and defense against unjustified claims 

- Measures to combat and prevent fraud, e.g. credit card fraud 

- Consultation of credit agencies and data exchange for credit assessment 

- Measures for the further development of the product and service range 

- Statistical evaluations 

- Coordination, business development and strategic measures within the Steiner1888 group of companies 

Provision of a customer account and customer profile on the Steiner1888 websites. 

You can object to processing on the basis of legitimate interests in individual cases pursuant to Art. 21 DSGVO. You can find out more about this under point 6. 

c) Within the scope of your consent 

(Art. 6 Abs. 1 lit. a DSGVO) 

Beyond points a) and b), Steiner1888 will only process your personal data after you have given your consent, e.g. when sending newsletters or using cookies (learn more under point 10. Cookie Policy). You can revoke your consent at any time. See also under point 6. 

5. Who receives your data? 

a) General provisions 

Steiner1888 has clear rules on who may receive personal data. Within the Steiner1888 group of companies, only those offices and employees will receive your data who need it to fulfill contractual, legal and supervisory tasks and obligations and to protect the legitimate interests listed under point 3.

b). In addition, order processors commissioned by Steiner1888, 

i.e. companies that support us in fulfilling the company's goals and tasks, such as IT companies, payment providers, suppliers, deliverers, printers, etc., receive your data. Your data, insofar as they need them to fulfill the assigned tasks. Steiner1888 enters into written agreements with these processors, which obligate them to comply with the same specifications that apply to Steiner1888. Furthermore, third parties with whom Steiner1888 cooperates in the context of the stated purposes of the processing or who may have a legitimate interest in the context of the cooperation, e.g. collection agencies, payment providers, trading platforms such as Amazon or Ebay receive personal data from Steiner1888, e.g. if you purchase from Steiner1888 via these platforms. If there is a legal or official obligation, public bodies may also receive data. b) Data transfer to third countries Data is only transferred to countries outside the EU if this country has an adequate level of protection according to Art. 45 DSGVO or if other guarantees according to Art. 46 DSGVO sufficiently protect your data. Steiner1888 has developed binding internal data protection rules (binding corporate rules) within the group of companies to be approved by the data protection authority according to Art. 46 para. 2. lit. b), as a supplement to the standard data protection clauses used according to Art. 46 para. 2. lit. c). Steiner1888 transfers data on the basis of these guarantees. 

6. How long do we process and store data? 

We store your data for the duration of the business relationship and beyond, in order to carry out advertising activities within the scope of legitimate interests, as long as you do not object to this processing in a legitimate manner pursuant to Art. 21 DSGVO or provided you have given us your consent or do not revoke it. Learn more about this under point 7. 

Due to legal storage and documentation obligations, storage beyond this may be necessary. These include in particular the Federal Fiscal Code (BAO) and the Business Code (UGB) in Austria as well as other national and European legal provisions. 

Due to our warranty obligations and the guarantees of our suppliers, storage is possible and necessary for a period of 3 years (short limitation period) up to 30 years in individual cases (long limitation period). 

7. Your rights as an affected person 

The GDPR ensures you comprehensive protection and information rights, as well as in particular the right to object and revoke in accordance with point e). You can contact our data protection officer with your request or complaint at any time. The competent supervisory authority for the Group is the Austrian data protection authority. You can also contact this authority in the event of a complaint. www.dsb.gv.at Your rights in detail: 

a) Right to information pursuant in Article 15 DSGVO. You have the right to free information about your personal and stored data and, if applicable, a right to correction, blocking or deletion, as well as revocation of consent granted. Contact our data protection officer if you would like to know anything about the way your data is used. 

b) Right to rectification according to Art. 16 DSGVO. Your data is no longer correct? Just let our Customer Service staff know. 

c) Right to deletion or restriction according to Art. 17 and 18 DSGVO Upon request and under the conditions of Art. 17 DSGVO, we will delete your data unless we are entitled to further use it. Under the conditions of Art. 18 DSGVO or if we cannot delete the data, you can request that we restrict the data processing. In all cases, we will also inform the recipients of the data of your request and also ask you to comply with your request. 

d) Right to data transfer: regulated in Art 20 DSGVO. You may request that we provide you with your stored data. 

e) Right to object according to Art 21 DSGVO and to revoke according to Art. 13. DSGVO. If the processing of the data is based on your consent according to Art. 6 para. 1 lit. a, you can revoke this consent at any time. If we process your data on the basis of our legitimate interest, you can object to this processing pursuant to Art. 21. DSGVO. We will then immediately check whether your request is justified. To exercise your revocation and objection, simply contact our Customer Service or the Data Protection Officer. 

f) Automated decisions in individual cases including profiling pursuant to Art. 22 DSGVO. You have the right not to be subject to automated decision-making and profiling where this has legal effect or similarly significantly affects you. For the use of automated decision-making and profiling, see point 9. 

8. Do you need to transfer data to us? 

We need your data to process your order. If you provide us with data, you are obliged to provide truthful information. In the case of false information, e.g. false age information, we are entitled to claim any resulting damage for us and in case of criminal relevance also to file charges. You are not obliged to provide data or to give your consent for processing if the data is not relevant for the fulfillment of the contract. However, due to different age limits for consent and legal capacity, we require your age in individual cases. 

9. Automated decision making and profiling 

a) Automated decision making 

Steiner1888 does not use automated decision making. 

b) Profiling 

Steiner1888 tries to take your personal interests, preferences and purchasing behavior into account in order to provide you with an optimal shopping experience on our webshop and in the stores. To this end, we also analyze the data you provide, your purchasing and surfing behavior within the framework of the legal provisions. As far as we use cookies and pixels for this purpose, we ask for your consent within the framework of our cookie policy, unless the use is necessary for communication or is permitted by the legitimate interests of Steiner1888 without your consent. More about this under point 10 Cookies Policy. 

10. Our Cookie Policy & Social Media 

a) General information on the use of cookies 

On various pages, we use cookies and pixels to make visiting our website attractive and to enable the use of certain functions. These are small text or image files that are stored on your computer or integrated our website. They help to identify the surfing behavior of a user and thus parts of the website or certain information can be adapted to your interests. 

Steiner1888 distinguishes in the use of cookies / pixels in: Necessary (first party cookies only): These are those that are necessary to maintain communication, necessary functions and/or to provide information. These are set automatically and deleted after the end of the browser session or expiration of the designated time. Essential (first party cookies and third party cookies): These are cookies that remain on your computer for the intended time and ensure that Steiner1888 recognizes your computer the next time you access the site and the settings and information you have entered, thus saving you from having to fill out forms with your data again. These cookies are set when the offered functionality is used or contain only general anonymized information about your accesses to the website (not to the content of the same) in order to later provide Steiner1888 with supplementary information about these accesses for statistical purposes or to enable Steiner1888 to analyze the navigation behavior (anonymized) on the websites and thus to improve the internet presence. Advertising cookies/pixels (third party cookies): These are those that are used to tailor our offer and services to your needs, interests and preferences and to provide you with customized advertising offers tailored to you. These will only be used with your consent, unless we are entitled to use them without your consent. 

b) Cookies/pixels used by Steiner1888 

In the following list, we provide you with a comprehensive description of all cookies/pixels used by Steiner1888, what personal data is used and what options you have. 

Newsletter 

If you register for our free newsletter, the data you requested for this purpose, i.e. your e-mail address, name and - optionally - your date of birth will be transmitted. At the same time, we store the IP address of the Internet connection from which you access our website as well as the date and time of your registration. During the further registration process, we will ask for your consent to send you the newsletter, describe the content in detail and refer to this privacy policy. We use the data collected in this process exclusively for sending the newsletter - in particular, they are therefore not passed on to third parties. The legal basis for this is Art. 6 para. 1 lit. a) DSGVO. 

In accordance with Art. 7 (3) DSGVO, you can revoke your consent to the sending of the newsletter at any time with effect for the future. To do so, you simply need to inform us of your revocation or use the unsubscribe link contained in each newsletter.Contact requests / contact option If you contact us via contact form or e-mail, the data you provide will be used to process your request. The provision of the data is necessary for processing and answering your request - without their provision, we can not answer your request or at best limited. The legal basis for this processing is Art. 6 para. 1 lit. b) DSGVO. Your data will be deleted if your inquiry has been answered conclusively and the deletion does not conflict with any statutory retention obligations, such as in the case of any subsequent contract processing. 

Google Analytics 

We use Google Analytics on our website. This is a web analytics service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as "Google". Through the certification according to the EU-US Privacy Shield ("EU-US Privacy Shield") https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active Google guarantees that the data protection requirements of the EU are also complied with when processing data in the USA. The Google Analytics service is used to analyze the usage behavior of our website. The legal basis is Art. 6 para. 1 lit. f) DSGVO. Our legitimate interest lies in the analysis, optimization and economic operation of our website. Usage and user-related information, such as IP address, location, time or frequency of visits to our website, is transferred to a Google server in the USA and stored there. However, we use Google Analytics with the so-called anonymization function. Through this function, Google already shortens the IP address within the EU or EEA. The data collected in this way is in turn used by Google to provide us with an evaluation of the visit to our website and the usage activities there. This data may also be used to provide other services related to the use of our website and the use of the Internet. Google states that it will not associate your IP address with any other data. In addition, Google keeps a record of your IP address at https://www.google.com/intl/de/policies/privacy/partners Google provides you with further information on data protection law, including information on how to prevent the use of your data. https://tools.google.com/dlpage/gaoptout?hl=de offers a so-called deactivation add-on together with further information on this. This add-on can be installed with standard Internet browsers and offers you further control over the data that Google collects when you visit our website. The add-on tells the JavaScript (ga.js) of Google Analytics that information about the visit to our website should not be transmitted to Google Analytics. However, this does not prevent information from being transmitted to us or to other web analytics services. Whether and which other web analytics services are used by us, you will of course also find out in this privacy policy. 

Facebook Social-Plug-in 

In our website we use the plug-in of the social network Facebook. Facebook is an internet service of facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA. In the EU, this service is in turn operated by Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland, hereinafter both referred to as "Facebook". Through certification under the EU-US Privacy Shield ("EU-US Privacy Shield"). https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active Facebook guarantees that the data protection requirements of the EU are also complied with when processing data in the USA. The legal basis is Art. 6 para. 1 lit. f) DSGVO. Our legitimate interest lies in improving the quality of our website. Further information about the possible plug-ins and their respective functions is available from Facebook at https://developers.facebook.com/docs/plugins/ for you. Facebook guarantees that the data protection requirements of the EU are also complied with when processing data in the USA. The legal basis is Art. 6 para. 1 lit. f) DSGVO. Our legitimate interest lies in improving the quality of our website. Further information about the possible plug-ins and their respective functions is available from Facebook at https://www.facebook.com/policy.php available. 

MailChimp - Newsletter 

We offer you the opportunity to register for our free newsletter via our website. For newsletter dispatch, we use MailChimp, a service of The Rocket Science Group, LLC, 512 Means Street, Suite 404, Atlanta, GA 30318, USA, hereinafter referred to only as "The Rocket Science Group". Through certification under the EU-US Privacy Shield ("EU-US Privacy Shield"). https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG&status=Active The Rocket Science Group guarantees that the data protection requirements of the EU are also complied with when processing data in the USA. In addition, The Rocket Science Group offers a data protection service at http://mailchimp.com/legal/privacy/ for further data protection information. If you register for our newsletter, the data requested during the registration process, such as your e-mail address and, optionally, your name and address, will be processed by The Rocket Science Group. In addition, your IP address and the date and time of your registration will be stored. In the course of the further registration process, your consent to the sending of the newsletter will be obtained, the content will be described in detail and reference will be made to this privacy policy. The newsletter subsequently sent via The Rocket Science Group also contains a so-called tracking pixel, also called "web beacon". With the help of this tracking pixel, we can evaluate whether and when you have read our newsletter and whether you have followed any further links contained in the newsletter. In addition to other technical data, such as the data of your IT system and your IP address, the processed data is stored so that we can optimize our newsletter offer and respond to the wishes of the readers. The data is thus used to increase the quality and attractiveness of our newsletter offer. The legal basis for the dispatch of the newsletter and the analysis is Art. 6 para. 1 lit. a.) DSGVO. 

In accordance with Art. 7 (3) DSGVO, you can revoke your consent to the sending of the newsletter at any time with effect for the future. To do so, you simply need to inform us of your revocation or click on the unsubscribe link contained in each newsletter. 

Google AdWords with Conversion-Tracking 

In our website, we use the advertising component Google AdWords and the so-called conversion tracking. This is a service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as "Google". Through the certification according to the EU-US Privacy Shield ("EU-US Privacy Shield") https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active Google guarantees that the data protection requirements of the EU are also complied with when processing data in the USA. We use conversion tracking for targeted advertising of our offer. The legal basis is Art. 6 para. 1 lit. f) DSGVO. Our legitimate interest lies in the analysis, optimization and economic operation of our website. If you click on an ad placed by Google, the conversion tracking we use stores a cookie on your terminal device. These so-called conversion cookies lose their validity after 30 days and do not serve to identify you personally. If the cookie is still valid and you visit a specific page of our website, both we and Google can evaluate that you have clicked on one of our ads placed on Google and that you have subsequently been redirected to our website. Google uses the information obtained in this way to provide us with statistics about visits to our website. In addition, this provides us with information about the number of users who clicked on our ad(s) and about the pages of our website that were subsequently accessed. However, neither we nor third parties who also use Google AdWords are able to identify you in this way. You can also prevent or restrict the installation of cookies using the appropriate settings in your Internet browser. At the same time, you can delete cookies that have already been stored at any time. However, the steps and measures required for this depend on your specific Internet browser used. If you have any questions, please use the help function or documentation of your Internet browser or contact its manufacturer or support. Furthermore, Google also offers the following link https://services.google.com/sitestats/de.html http://www.google.com/policies/technologies/ads/ http://www.google.de/policies/privacy/ for further information on this topic and in particular on the options for preventing data use. 

Google Remarketing or "Similar Target Groups" Component by Google 

We use the remarketing or "similar target groups" function on our website. This is a service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as "Google". Through the certification according to the EU-US Privacy Shield ("EU-US Privacy Shield"). https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active Google guarantees that the data protection requirements of the EU are also complied with when processing data in the USA. We use this function to serve interest-based, personalized advertising on third-party websites that also participate in Google's advertising network. The legal basis is Art. 6 para. 1 lit. f) DSGVO. Our legitimate interest lies in the analysis, optimization and economic operation of our website. In order to enable this advertising service, Google stores a cookie with a sequence of numbers on your terminal device during your visit to our website via your internet browser. This cookie records both your visit and the use of our website in anonymized form. However, no personal data is passed on in the process. If you subsequently visit the website of a third party that also uses the Google advertising network, advertisements may appear that relate to our website or our offers there. To permanently deactivate this function, Google offers the following link for the most popular Internet browsers https://www.google.com/settings/ads/plugin https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active Google guarantees that the data protection requirements of the EU are also complied with when processing data in the USA. We use this function to serve interest-based, personalized advertising on third-party websites that also participate in Google's advertising network. The legal basis is Art. 6 para. 1 lit. f) DSGVO. Our legitimate interest lies in the analysis, optimization and economic operation of our website. In order to enable this advertising service, Google stores a cookie with a sequence of numbers on your terminal device during your visit to our website via your internet browser. This cookie records both your visit and the use of our website in anonymized form. However, no personal data is passed on in the process. If you subsequently visit the website of a third party that also uses the Google advertising network, advertisements may appear that relate to our website or our offers there. To permanently deactivate this function, Google offers the following link for the most popular Internet browsers http://www.youronlinechoices.com/uk/your-ad-choices or http://www.networkadvertising.org/choices/ via opt-out. https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active Google guarantees that the data protection requirements of the EU are also complied with when processing data in the USA. We use this function to serve interest-based, personalized advertising on third-party websites that also participate in Google's advertising network. The legal basis is Art. 6 para. 1 lit. f) DSGVO. Our legitimate interest lies in the analysis, optimization and economic operation of our website. In order to enable this advertising service, Google stores a cookie with a sequence of numbers on your terminal device during your visit to our website via your internet browser. This cookie records both your visit and the use of our website in anonymized form. However, no personal data is passed on in the process. If you subsequently visit the website of a third party that also uses the Google advertising network, advertisements may appear that relate to our website or our offers there. To permanently deactivate this function, Google offers the following link for the most popular Internet browsers http://www.google.com/privacy/ads/ . 

Facebook Remarketing / Retargeting 

Remarketing tags of the social network Facebook, 1601 South California Avenue, Palo Alto, CA 94304, USA are integrated on our pages. When you visit our pages, the remarketing tags establish a direct connection between your browser and the Facebook server. Facebook thereby receives the information that you have visited our site with your IP address. This allows Facebook to associate the visit to our pages with your user account. We can use the information obtained in this way to display Facebook Ads. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Facebook. For more information on this, please refer to Facebook's privacy statement at https://www.facebook.com/about/privacy/ . . If you do not wish to have data collected via Custom Audiences, you can deactivate Custom Audiences here. Conversion measurement with the visitor action pixel from Facebook. With your consent, we use the "visitor action pixel" of Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook") within our website. With its help, we can track the actions of users after they have seen or clicked on a Facebook ad. This allows us to track the effectiveness of Facebook ads for statistical and market research purposes. The data collected in this way is anonymous to us, which means that we do not see the personal data of individual users. However, this data is stored and processed by Facebook, about which we inform you according to our level of knowledge. Facebook may link this data to your Facebook account and also use it for its own advertising purposes, in accordance with Facebook's Data Use Policy https://www.facebook.com/about/privacy/.You may allow Facebook and its partners to serve ads on and off Facebook. Furthermore, a cookie may be stored on your computer for these purposes. 

c) Revocation and objection options 

You can revoke your consent at any time and also object to the use of cookies/pixels that do not require your consent, insofar as they are not necessary or deactivation is technically possible. However, we would like to point out that in the case of objection, not all functions of the website can be made fully available. You have several options to object to the use of cookies/pixels or to revoke an already granted consent. 

For example, the most common browsers offer the option to prevent the use of cookies. The following links will tell you how to do it: 

- Microsofts Windows Internet Explorer 

- Microsofts Windows Internet Explorer Mobile 

- Mozilla Firefox 

- Google Chrome für Desktop 

- Google Chrome für Mobile 

- Apple Safari für Desktop 

- Apple Safari für Mobile 

Browser extensions, such as Ghostery, allow you to disable individual cookies and control which cookies are set and which are not. Installation is simple, fast and available for all major browsers. In the case of "third-party cookies", the service providers used often offer deactivation options themselves. We show the most important ones in the explanation of the tools. 

11. Our security precautions 

We secure our website and other systems through technical and organizational measures against loss, destruction, access, modification or distribution of your data by unauthorized persons. 

We comply with the principles of the GDPR according to Art 5 in all processing activities and subject all processing activities to a detailed review as part of our data protection management system. In addition, we periodically conduct external data protection audits. 

Access to your customer account is only possible after entering your personal password. You should always keep your access information confidential and close the browser window when you have finished communicating with us, especially if you share the computer with others. 

Credit card data will not be stored, but will be collected and processed directly by our payment service provider "Wirecard Central Eastern Europe GmbH". 

12. Links to external websites 

The websites of Steiner1888 contain links (connections) to websites of other companies. Steiner1888 has no influence on the design and content of these websites. Nor can Steiner1888 control how the providers of these websites handle your information. The data protection declaration and our responsibility and liability therefore do not extend to the linked websites. For questions, please contact these companies directly.