Terms and Conditions of Stoll Group Ventures GmbH

1. Scope

    These Terms and Conditions apply to all orders placed by customers residing in Germany through the online store of Stoll Group Ventures GmbH, Ägeristrasse 116, 6300 Zug, info@stoll-groupventures.ch www.lockenkopf.com (hereinafter referred to as lockenkopf.com). Lockenkopf.com provides all services exclusively on the basis of these General Terms and Conditions. By placing an order, the customer expressly agrees to these GTC. These GTC form an integral part of the contract between the customer and lockenkopf.com.

    2. Information on the Website/Offer/Prices

      lockenkopf.com strives to provide product information that is as complete and accurate as possible (e.g., ingredients, weight, packaging images, product features, etc.) Some of the information on www.lockenkopf.com is obtained directly from manufacturers and is compiled by lockenkopf.com in a clear and user-friendly manner for customers. However, customers are strongly advised to review the specific information in the package insert or the product information on the manufacturer’s website. The latter takes precedence over the information provided by lockenkopf.com.

      All information on www.lockenkopf.com is provided without warranty, and we disclaim all liability. To the fullest extent permitted by law, Lockenkopf.com specifically excludes any warranty or liability regarding the accuracy, completeness, and timeliness of the information on the website.

      We reserve the right to change prices and product ranges at any time. Product images and illustrations are not color-accurate and may differ from the actual product. The technical specifications of the products delivered may differ from the manufacturer’s specifications or the information listed online.

      The current prices are published online at www.lockenkopf.com.

      Prices are binding on both parties at the time of order placement. However, in the event of errors or inaccuracies in the price listing, lockenkopf.com reserves the right to make subsequent price changes. In such cases, the customer will be notified and is not obligated to purchase the products affected by the price change.

      All prices are in euros (€) and, unless otherwise noted, include the applicable sales tax.

      In addition to the prices listed, shipping costs will apply, as specified on the “Shipping” page, depending on the shipping method.

      3. Ordering/Delivery

      An order becomes binding for the customer when, at the end of the ordering process, the customer confirms the order on the page displaying the order summary by clicking the "Place Order" button.

      Immediately after placing an order, the customer will receive an order confirmation email from lockenkopf.com at the email address provided by the customer. Until an order acceptance is sent to the customer in a separate email, lockenkopf.com reserves the right to reject the order or reduce the order quantity, in which case no contract is formed between the customer and lockenkopf.com, or a contract is formed for the reduced order quantity. Unless the customer promptly informs lockenkopf.com that they have no interest in the reduced order quantity.

      lockenkopf.com reserves the right, in particular, to refuse an order if there is a legal dispute with the customer, especially regarding unpaid amounts from previous orders placed with lockenkopf.com, or if any other invoices due for payment from the same person or a person living in the same household remain outstanding.

      The customer is responsible for providing a complete and accurate shipping address. If the customer provides an incorrect delivery address, delivery may not be possible under certain circumstances, and lockenkopf.com may refrain from delivering the product entirely without the customer being entitled to claim any compensation or damages.

      If the customer provides an incorrect shipping address when placing an order or refuses to accept the shipment, the customer is responsible for any resulting costs. In this case, we will refund the purchase price minus the actual costs incurred for shipping (see Shipping Costs), return shipping, and a flat-rate processing and fulfillment fee of€2.80.

      lockenkopf.com ships products and gift cards exclusively within the EU.

      4. Delivery and Delivery Time

      lockenkopf.com maintains a stock of products. According to our shipping policy, lockenkopf.com ships orders placed by 1:00 PM on the day they are placed. (Excluding orders placed on weekends, which are shipped on the next business day.)

      For items that cannot be shipped from stock, delivery may be further delayed depending on the manufacturer.

      lockenkopf.com can only be held liable for delivery delays and their consequences to the extent that they were caused by gross negligence or intentional breach of contract on the part of lockenkopf.com. lockenkopf.com assumes no liability for all other delivery delays and their consequences, including delays caused by the postal service, lockenkopf.com’s suppliers, or third parties.

      lockenkopf.com does not ship to P.O. box addresses and does not deliver goods to minors or individuals under legal guardianship without the written consent of their legal representative.

      lockenkopf.com is not responsible for the recipients' inboxes.

      5. Products delivered in error

      Items delivered in error or in excess must be returned immediately in their original packaging, no later than 7 days after delivery. Any items not returned within this period will be billed. lockenkopf.com will cover the cost of returning the incorrectly shipped goods. The return shipping costs will be reimbursed to the customer in advance.

      6. Gift Certificates

      Only one coupon (or discount code) can be redeemed per order. At the end of the ordering process, enter the voucher code in the field provided. The corresponding amount will be deducted directly from the current order. Vouchers that exceed the order total cannot be refunded.

      7. Shipping Costs

      We place great importance on transparent and fair shipping rates, as well as fast delivery of your order. Shipping rates for deliveries within Germany are tiered as follows:

      • DHL Parcel up to 3 kg: €5.90
      • Free shipping on orders of €70 or more

      For orders of €70 or more within Germany, we'll cover the shipping costs for you—your order will be delivered free of charge.

      Shipping costs to Austria

      • DHL International: €9.95
      • Delivery in approximately 2–5 business days
      • No free shipping

      Shipping costs to Sweden

      • DHL International: €15.90
      • Delivery in approximately 3–5 business days
      • No free shipping

      Shipping costs in Europe

      • UPS International: €13.80
      • Delivery in approximately 3–5 business days
      • No free shipping

      8. Disclaimer of Warranty and Liability

      lockenkopf.com guarantees that the products are undamaged at the time of shipment. Products damaged during shipping will be repaired or replaced at lockenkopf.com’s discretion, provided the customer notifies lockenkopf.com of the defect via email within 7 days of receiving the goods. If lockenkopf.com so requests, the customer must also immediately return the delivered products in their original packaging to lockenkopf.com; lockenkopf.com will cover the shipping costs for this.

      Furthermore, lockenkopf.com is liable to the customer for damages to the extent that such liability on the part of lockenkopf.com is mandated by the Product Liability Act.

      Any further warranty for the delivered products and any liability for damages caused by these products is excluded, unless lockenkopf.com has fraudulently concealed the relevant product defects. However, if lockenkopf.com is able to assert further warranty claims against its suppliers for the product in question, lockenkopf.com will

      Where possible, assign claims to the customer at the customer’s request. However, lockenkopf.com assumes no responsibility for the successful enforcement of such claims. The same applies to any claims that lockenkopf.com may assert against the postal service for damages incurred during transport.

      In particular, lockenkopf.com does not guarantee that the products are suitable for the customer’s intended use or that they will produce a specific result. Furthermore, the warranty does not cover damage for which the buyer is responsible, e.g., as a result of improper use of the product, or damage caused by external factors for which the seller is not responsible, such as damage incurred during transport.

      9. Right of Withdrawal/Return Policy

      Customers have the right to cancel this contract within fourteen days without giving any reason. The cancellation period is fourteen days from the day on which the customer or a third party designated by the customer, other than the carrier, took possession of the last item.

      To exercise your right of withdrawal, you must notify us (lockenkopf.com, Aegerisstrasse 116, 6300 Zug, Switzerland, shop@lockenkopf.com) of your decision to withdraw from this contract by means of a clear statement (e.g., a letter sent by mail or an email). You may use the attached model withdrawal form for this purpose, but this is not mandatory. To meet the withdrawal deadline, it is sufficient for you to send your notification of exercising the right of withdrawal before the withdrawal period expires.

      Returns must be sent to:

      Lockenkopf Returns
      c/o Spoondrink GmbH
      Altes Feld 17
      31749 Auetal, Germany

      be sent.

      Exercising the right of return results in the conversion of the sales contract into a contract for the reversal of the transaction, under which the benefits received under the sales contract must be returned. The customer is responsible for the costs of returning the item.

      The refund will be issued immediately and no later than fourteen days from the date on which lockenkopf.com receives notice of your cancellation of this contract. For this refund, lockenkopf.com will use the same payment method that was used for the original transaction, unless otherwise expressly agreed.

      We reserve the right to deduct from the refundable purchase price or to issue an invoice for any damage or excessive wear and tear to the goods. No deduction will be made if the loss in value is attributable to handling necessary to determine the nature, characteristics, and functionality of the goods. lockenkopf.com may withhold the refund until it has received the goods back or until the customer has provided proof that they have returned the goods, whichever occurs first.

      lockenkopf.com guarantees that the products are undamaged at the time of shipment. Products damaged during shipping will be repaired or replaced at lockenkopf.com’s discretion, provided the customer notifies lockenkopf.com of the defect via email within 14 days of receiving the goods. If lockenkopf.com so requests, the customer must also immediately return the delivered products in their original packaging to lockenkopf.com; lockenkopf.com will cover the shipping costs for this.

      Any further warranty for the delivered products and any liability for damages caused by these products is excluded, unless lockenkopf.com has fraudulently concealed the relevant product defects. However, if lockenkopf.com is able to assert further warranty claims against its suppliers for the product in question, lockenkopf.com will, to the extent possible, assign these claims to the customer upon the customer’s request. lockenkopf.com assumes no responsibility, however, for the successful enforcement of these claims. The same applies to any claims that lockenkopf.com may assert against the postal service for damages incurred during transport.

      In particular, lockenkopf.com does not guarantee that the products are suitable for the customer’s intended use or that they will produce a specific result.

      Customers are only liable for any loss in value of the goods if such loss is attributable to handling of the goods that goes beyond what is necessary to assess their condition, characteristics, and functionality.

      Free shipping, promotional discounts, and free gifts with purchase

      Certain promotions offered by Lockenkopf (such as free shipping, free products, shopping cart gifts, or discount offers) are subject to a minimum order amount.

      If the order total subsequently falls below this minimum order value due to a return, a partial return, or a cancellation, eligibility for the promotion will be retroactively revoked.

      In that case, we reserve the right to:

      • to charge the shipping costs that were originally waived retroactively,
      • offset the value of free products or shopping cart gifts against the refund, or
      • to request the return of the relevant free product.

      This is especially true if the free product or free shipping was provided solely because the original minimum order amount was met.

      The value of the free product is listed in the shopping cart, on the invoice, or in the promotion.

      10. Payment Methods, Billing, and Collection

      lockenkopf.com accepts all major credit cards, PayPal, and orders on account.

      When ordering on account: You will receive the invoice via email at no charge. By purchasing on account, you agree to the PowerPay Terms and Conditions, provided you have a valid email address.

      lockenkopf.com partners with the MF Group/Powerpay for the "invoice option." This means that Stoll Group Ventures GmbH assigns all receivables to the MF Group.  

      Purchase on account with installment payment option (POWERPAY)

      MF Group / POWERPAY, as an external payment service provider, offers the “Purchase on Account” payment method. With individual invoicing, you can easily pay for your online purchase by invoice. If you choose not to pay within the specified time frame, you will receive a monthly invoice with an order summary the following month.

      Upon conclusion of the purchase agreement, POWERPAY assumes the resulting invoice receivable and handles the corresponding payment arrangements. When purchasing on account, you agree to POWERPAY’sTerms and Conditionsin addition to our own (powerpay.ch/de/agb).

      11. Data Protection

      lockenkopf.com uses the data entrusted to it with respect for its customers (hereinafter referred to as “the customer”). Customer data will not be sold, rented, loaned, or disclosed to third parties.
      Under “My Account,” the customer can change their personal data at any time.

      Privacy Policy

      This Privacy Policy explains the nature, scope, and purpose of the processing of personal data (hereinafter referred to as “Data”) within our online platform and its associated websites, features, and content, as well as external online presences, such as our social media profiles (hereinafter collectively referred to as the “online offering”). With regard to the terms used, such as “processing” or “controller,” we refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR).

      Data Controller

      Oliver Stoll, Stoll Group Ventures GmbH
      Aegeristrasse 116
      6300 Zug, Switzerland
      Email address: oliver@stoll-groupventures.ch
      Managing Directors/Owners: Oliver Stoll, Moritz Stoll, Rosa Maria Gonzalez, Jette Stoll

      Types of data processed:

      - Master data (e.g., names, addresses).
      - Contact information (e.g., email, phone numbers).
      - Content data (e.g., text entries, photographs, videos).
      - Usage data (e.g., websites visited, content interests, access times).
      - Meta/communication data (e.g., device information, IP addresses).

      Categories of data subjects

      Visitors and users of the website (hereinafter, we collectively refer to these individuals as “users”).

      Purpose of the processing

      - To provide the online service, its features, and content.
      - Responding to contact requests and communicating with users.
      - Security measures.
      - Audience measurement/marketing

      Terminology Used

      “Personal data” means any information relating to an identified or identifiable natural person (hereinafter referred to as the “data subject”); a natural person is considered identifiable if they can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g., a cookie) or one or more specific characteristics that reflect the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

      “Processing” means any operation or set of operations performed on personal data, whether or not by automated means. The term is broad and encompasses virtually any handling of data.

      “Pseudonymization” means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures that ensure the personal data is not attributed to an identified or identifiable natural person.

      “Profiling” means any form of automated processing of personal data consisting of the use of such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements of that natural person.

      “Controller” means the natural or legal person, public authority, agency, or other body that, alone or jointly with others, determines the purposes and means of the processing of personal data.

      “Processor” means a natural or legal person, public authority, agency, or other body that processes personal data on behalf of the controller.

      Relevant legal basis

      In accordance with Article 13 of the GDPR, we are providing you with the legal bases for our data processing activities. If the legal basis is not specified in the Privacy Policy, the following applies: The legal basis for obtaining consent is Article 6(1)(a) and Article 7 of the GDPR; the legal basis for processing to fulfill our services, carry out contractual obligations, and respond to inquiries is Article 6(1)(b) of the GDPR; the legal basis for processing to fulfill our legal obligations is Article 6(1)(c) of the GDPR, and the legal basis for processing to safeguard our legitimate interests is Article 6(1)(f) of the GDPR. In the event that the vital interests of the data subject or another natural person require the processing of personal data, Article 6(1)(d) of the GDPR serves as the legal basis.

      Safety measures

      In accordance with Article 32 of the GDPR, we implement appropriate technical and organizational measures, taking into account the state of the art, the costs of implementation, and the nature, scope, circumstances, and purposes of the processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, to ensure a level of security appropriate to the risk.

      These measures include, in particular, ensuring the confidentiality, integrity, and availability of data by controlling physical access to the data, as well as access to, input of, and disclosure of the data, ensuring its availability, and its segregation. Furthermore, we have established procedures that ensure the exercise of data subjects’ rights, the erasure of data, and a response to data breaches. Furthermore, we take the protection of personal data into account as early as the development or selection of hardware, software, and procedures, in accordance with the principle of data protection by design and by default (Art. 25 GDPR).

      Cooperation with Data Processors and Third Parties

      If, in the course of our data processing activities, we disclose data to other individuals or companies (processors or third parties), transfer it to them, or otherwise grant them access to the data, this is done only on the basis of legal authorization (e.g., if the transfer of data to third parties, such as payment service providers, is necessary for the performance of a contract pursuant to Art. 6(1)(b) GDPR), you have given your consent, a legal obligation requires it, or based on our legitimate interests (e.g., when using agents, web hosts, etc.). 

      If we engage third parties to process data on the basis of a so-called “data processing agreement,” this is done in accordance with Article 28 of the GDPR.

      Transfers to third countries

      If we process data in a third country (i.e., outside the European Union (EU) or the European Economic Area (EEA)), or if this occurs in connection with the use of third-party services or disclosure, or transfer of data to third parties, this occurs only if it is necessary to fulfill our (pre)contractual obligations, based on your consent, due to a legal obligation, or based on our legitimate interests. Subject to statutory or contractual permissions, we process or have data processed in a third country only if the specific requirements of Art. 44 et seq. of the GDPR are met. This means that processing takes place, for example, on the basis of special safeguards, such as the officially recognized determination of a level of data protection equivalent to that of the EU (e.g., for the U.S. through the “Privacy Shield”) or compliance with officially recognized specific contractual obligations (so-called “Standard Contractual Clauses”).

      Rights of data subjects

      You have the right to request confirmation as to whether data concerning you is being processed, as well as access to that data, further information, and a copy of the data in accordance with Article 15 of the GDPR.

      You have the right, pursuant to Article 16 of the GDPR, to request that the data concerning you be completed or that any inaccurate data concerning you be corrected.

      You have the right, pursuant to Article 17 of the GDPR, to request that the relevant data be erased without delay, or alternatively, pursuant to Article 18 of the GDPR, to request a restriction on the processing of the data.

      You have the right to request that the data concerning you, which you have provided to us, be made available to you in accordance with Article 20 of the GDPR and to request its transmission to other controllers. 

      You also have the right, pursuant to Article 77 of the GDPR, to lodge a complaint with the competent supervisory authority.

      Right of Withdrawal

      You have the right to withdraw any consent you have given in accordance with Article 7(3) of the GDPR with future effect

      Right to object

      You may object at any time to the future processing of your personal data in accordance with Article 21 of the GDPR. In particular, you may object to the processing of your data for direct marketing purposes.

      Cookies and the Right to Object to Direct Marketing

      “Cookies” are small files that are stored on users’ computers. Various types of information can be stored in cookies. A cookie is primarily used to store information about a user (or the device on which the cookie is stored) during or after their visit to a website. Temporary cookies, also known as “session cookies” or “transient cookies,” are cookies that are deleted after a user leaves an online service and closes their browser. Such a cookie can, for example, store the contents of a shopping cart in an online store or a login status. Cookies that remain stored even after the browser is closed are referred to as “permanent” or “persistent.” For example, the login status can be stored so that users can access it again after several days. Similarly, such a cookie may store the user’s interests, which are used for audience measurement or marketing purposes. "Third-party cookies" are cookies provided by providers other than the controller operating the online service (otherwise, if only the controller’s cookies are used, they are referred to as "first-party cookies").

      We may use temporary and permanent cookies and provide information about this in our Privacy Policy.

      If users do not wish to have cookies stored on their computer, they are asked to disable the corresponding option in their browser’s system settings. Stored cookies can be deleted in the browser’s system settings. Disabling cookies may result in functional limitations of this online service.

      A general objection to the use of cookies employed for online marketing purposes can be made for a wide range of services, particularly in the case of tracking, via the U.S. websitehttp://www.aboutads.info/choices/ orthe EU websitehttp://www.youronlinechoices.com/erklärt. Furthermore, the storage of cookies can be prevented by disabling them in your browser settings. Please note that this may result in some features of this online service becoming unavailable.

      Deletion of Data

      The data we process will be erased or its processing restricted in accordance with Articles 17 and 18 of the GDPR. Unless expressly stated in this Privacy Policy, the data stored by us will be deleted as soon as it is no longer necessary for its intended purpose and no legal retention obligations prevent its deletion. If the data is not deleted because it is required for other legally permissible purposes, its processing will be restricted. This means the data will be blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax law reasons.

      In accordance with legal requirements in Germany, data is retained for a period of 10 years in particular pursuant to Sections 147(1) AO, 257(1)(1) and (4), (4) HGB (books, records, management reports, accounting documents, trading books, documents relevant for taxation, etc.) and 6 years pursuant to Section 257(1)(2) and (3), (4) of the German Commercial Code (HGB) (business correspondence). 

      In accordance with legal requirements in Austria, records must be retained for 7 years pursuant to Section 132(1) of the Federal Tax Code (BAO) (accounting documents, receipts/invoices, accounts, vouchers, business papers, statements of income and expenses, etc.), for 22 years in connection with real estate, and for 10 years for documents related to electronically supplied services, telecommunications, radio, and television services provided to non-business customers in EU member states for which the Mini One-Stop Shop (MOSS) is utilized.

      Order Processing in the Online Store and Customer Account

      We process our customers’ data as part of the ordering process in our online store to enable them to select and order the products and services of their choice, as well as to facilitate payment, delivery, and fulfillment.

      The data processed includes inventory data, communication data, contract data, and payment data, and the individuals affected by this processing include our customers, prospective customers, and other business partners. The processing is carried out for the purpose of providing contractual services in connection with the operation of an online store, billing, delivery, and customer service. In doing so, we use session cookies to store the contents of the shopping cart and persistent cookies to store the login status.

      Processing is based on Article 6(1)(b) (execution of order processes) and (c) (legally required archiving) of the GDPR. The information marked as required is necessary for the establishment and performance of the contract. We disclose the data to third parties only in connection with delivery, payment, or within the scope of legal permissions and obligations toward legal advisors and authorities. The data is processed in third countries only if this is necessary for the fulfillment of the contract (e.g., at the customer’s request for delivery or payment).

      Users may optionally create a user account, which allows them, in particular, to view their orders. During registration, users are informed of the required mandatory information. User accounts are not public and cannot be indexed by search engines. If users have terminated their user account, their data related to the user account will be deleted, unless retention is necessary for commercial or tax law reasons in accordance with Art. 6(1)(c) GDPR. Information in the user account remains until its deletion, followed by archiving in the event of a legal obligation. It is the users’ responsibility to back up their data upon cancellation prior to the end of the contract.

      In connection with registration, subsequent logins, and the use of our online services, we store the IP address and the time of the respective user action. This storage is based on our legitimate interests, as well as the users’ interests in protection against misuse and other unauthorized use. This data is generally not disclosed to third parties, unless it is necessary to pursue our claims or there is a legal obligation to do so pursuant to Art. 6(1)(c) GDPR.

      Deletion occurs upon the expiration of statutory warranty and comparable obligations; the necessity of retaining the data is reviewed every three years; in the case of statutory archiving obligations, the data is deleted upon their expiration (end of commercial law (6 years) and tax law (10 years) retention obligations).

      Third-party payment service providers

      We use external payment service providers whose platforms allow users and us to process payment transactions (e.g., each with a link to their privacy policy): PayPal (https://www.paypal.com/de/webapps/mpp/ua/privacy-full), Klarna (https://www.klarna.com/de/datenschutz/), Skrill (https://www.skrill.com/de/fusszeile/datenschutzrichtlinie/), Giropay (https://www.giropay.de/rechtliches/datenschutz-agb/), Visa (https://www.visa.de/datenschutz), Mastercard (https://www.mastercard.de/de-de/datenschutz.html), American Express (https://www.americanexpress.com/de/content/privacy-policy-statement.html)

      In the context of fulfilling contracts, we use these payment service providers on the basis of Art. 6(1)(b) of the GDPR. Furthermore, we use external payment service providers based on our legitimate interests pursuant to Art. 6(1)(f) GDPR to offer our users effective and secure payment options.

      The data processed by the payment service providers includes master data, such as name and address; bank details, such as account numbers or credit card numbers; passwords, TANs, and checksums; as well as information related to the contract, amounts, and recipients. This information is necessary to process the transactions. However, the data entered is processed and stored solely by the payment service providers. This means we do not receive any account or credit card-related information, but only information confirming or rejecting the payment. Under certain circumstances, the payment service providers may transmit the data to credit bureaus. The purpose of this transmission is to verify identity and creditworthiness. For this, we refer you to the terms and conditions and privacy policies of the payment service providers.

      The terms and conditions and privacy policies of the respective payment service providers apply to payment transactions; these are available on the respective websites or within the transaction applications. We also refer you to these for further information and to exercise your rights of withdrawal, access, and other data subject rights.

      Administration, Financial Accounting, Office Organization, Contact Management

      We process data in connection with administrative tasks, the organization of our operations, financial accounting, and compliance with legal obligations, such as archiving. In doing so, we process the same data that we process in connection with the provision of our contractual services. The legal basis for processing is Article 6(1)(c) of the GDPR and Article 6(1)(f) of the GDPR. This processing affects customers, prospective customers, business partners, and website visitors. The purpose and our interest in the processing lie in administration, financial accounting, office organization, and data archiving—that is, tasks that serve to maintain our business operations, fulfill our responsibilities, and provide our services. The deletion of data in connection with contractual services and contractual communication corresponds to the information provided regarding these processing activities.

      In this context, we disclose or transfer data to tax authorities, advisors such as tax consultants or auditors, as well as other fee-charging entities and payment service providers.

      Furthermore, based on our business interests, we store information regarding suppliers, event organizers, and other business partners, e.g., for the purpose of contacting them at a later date. We generally store this predominantly company-related data permanently.

      Registration function

      Users can create a user account. During the registration process, users are informed of the required mandatory information, which is processed on the basis of Article 6(1)(b) of the GDPR for the purpose of providing the user account. The data processed includes, in particular, login information (name, password, and an email address). The data entered during registration is used for the purposes of using the user account and its intended function. 

      Users may be notified via email about information relevant to their user account, such as technical changes. If users have terminated their user account, their data related to the user account will be deleted, subject to any legal retention obligations. It is the users’ responsibility to back up their data prior to the end of the contract in the event of termination. We are entitled to irrevocably delete all user data stored during the term of the contract.

      When you use our registration and login functions, as well as your user account, we store your IP address and the time of the respective user action. This storage is based on our legitimate interests, as well as the user’s interest in protection against misuse and other unauthorized use. This data is generally not disclosed to third parties, unless it is necessary to pursue our claims or there is a legal obligation to do so pursuant to Art. 6(1)(c) of the GDPR. IP addresses are anonymized or deleted after 7 days at the latest.

      Comments and posts

      When users leave comments or other posts, their IP addresses may be stored for 7 days based on our legitimate interests within the meaning of Article 6(1)(f) of the GDPR. This is done for our protection in case someone posts illegal content in comments or posts (insults, prohibited political propaganda, etc.). In such cases, we could be held liable for the comment or post and are therefore interested in the author’s identity.

      Furthermore, we reserve the right, based on our legitimate interests pursuant to Art. 6(1)(f) GDPR, to process user data for the purpose of spam detection.

      On the same legal basis, we reserve the right, in the case of surveys, to store users’ IP addresses for the duration of the survey and to use cookies to prevent multiple votes.

      The data provided in the context of comments and posts will be stored by us permanently until the user objects.

      Contact Us

      When you contact us (e.g., via the contact form, email, phone, or social media), your information is processed to handle your inquiry and its follow-up in accordance with Art. 6(1)(b) (in the context of contractual or pre-contractual relationships) Art. 6(1)(f) (other inquiries) of the GDPR. User information may be stored in a Customer Relationship Management system (“CRM system”) or a comparable inquiry management system.

      We delete the inquiries once they are no longer necessary. We review the necessity of retention every two years; furthermore, statutory archiving obligations apply.

      Newsletter

      The following information explains the content of our newsletter, as well as the procedures for subscription, distribution, and statistical analysis, and your rights to object. By subscribing to our newsletter, you agree to receive it and to the procedures described herein.

      Newsletter Content: We send newsletters, emails, and other electronic communications containing promotional information (hereinafter “newsletters”) only with the recipient’s consent or pursuant to a legal authorization. If the newsletter’s content is specifically described during the subscription process, that description is decisive for the user’s consent. Otherwise, our newsletters contain information about our services and our company.

      Double opt-in and logging: Subscription to our newsletter takes place via a so-called double opt-in procedure. This means that after signing up, you will receive an email asking you to confirm your subscription. This confirmation is necessary to ensure that no one can sign up using someone else’s email address. Newsletter subscriptions are logged to provide proof of the subscription process in accordance with legal requirements. This includes storing the time of subscription and confirmation, as well as the IP address. Changes to your data stored with the mailing service provider are also logged.

      Registration data: To subscribe to the newsletter, simply provide your email address. Optionally, we ask you to provide a name so that we can address you personally in the newsletter.

      The distribution of the newsletter and the associated performance measurement are based on the recipient’s consent pursuant to Art. 6(1)(a), Art. 7 GDPR in conjunction with § 7(2)(3) UWG, or, if consent is not required, on the basis of our legitimate interests in direct marketing pursuant to Art. 6(1)(f) GDPR in conjunction with Section 7(3) UWG. 

      The logging of the registration process is based on our legitimate interests pursuant to Art. 6(1)(f) GDPR. Our interest is focused on the use of a user-friendly and secure newsletter system that serves both our business interests and meets user expectations, and further allows us to provide proof of consent.

      Cancellation/Withdrawal – You may cancel your subscription to our newsletter at any time, i.e., withdraw your consent. A link to unsubscribe from the newsletter can be found at the end of each newsletter. We may store unsubscribed email addresses for up to three years based on our legitimate interests before deleting them, in order to be able to prove that consent was previously given. The processing of this data is limited to the purpose of potentially defending against claims. An individual request for deletion is possible at any time, provided that the prior existence of consent is confirmed at the same time.

      Newsletter - Mailchimp

      The newsletter is sent via the mailing service provider “MailChimp,” a newsletter distribution platform operated by the U.S. company Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA. You can view the mailing service provider’s privacy policy here:https://mailchimp.com/legal/privacy/. The Rocket Science Group LLC d/b/a MailChimp is certified under the Privacy Shield Framework and thereby guarantees compliance with European data protection standards (https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG&status=Active). The mailing service provider is engaged on the basis of our legitimate interests pursuant to Art. 6(1)(f) GDPR and a data processing agreement pursuant to Art. 28(3)(1) GDPR.

      The shipping service provider may use the recipients’ data in pseudonymous form—i.e., without linking it to a specific user—to optimize or improve its own services, e.g., for technical optimization of the delivery and presentation of the newsletter or for statistical purposes. However, the mailing service provider does not use the data of our newsletter recipients to contact them directly or to pass the data on to third parties.

      Newsletter - Measuring Success

      The newsletters contain a so-called “web beacon,” which is a pixel-sized file that is retrieved from our server—or, if we use a mailing service provider, from their server—when the newsletter is opened. As part of this retrieval, technical information—such as details about your browser and system—as well as your IP address and the time of retrieval are initially collected. 

      This information is used to improve our services technically based on the technical data, or to analyze target groups and their reading behavior based on their access locations (which can be determined using the IP address) or access times. The statistical analysis also includes determining whether the newsletters are opened, when they are opened, and which links are clicked. For technical reasons, this information can be attributed to individual newsletter recipients. However, it is neither our intention nor, if used, that of the mailing service provider to monitor individual users. Rather, the analyses serve to help us identify our users’ reading habits and adapt our content accordingly, or to send different content based on our users’ interests.

      Unfortunately, it is not possible to opt out of performance tracking separately; in this case, the entire newsletter subscription must be canceled. 

      Google Analytics

      We use Google Analytics, a web analytics service provided by Google LLC (“Google”), based on our legitimate interests (i.e., our interest in analyzing, optimizing, and ensuring the economic viability of our online offering within the meaning of Article 6(1)(f) of the GDPR). Google uses cookies. The information generated by the cookie regarding users’ use of the online service is generally transmitted to a Google server in the United States and stored there.

      Google is certified under the Privacy Shield Agreement and thereby guarantees compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

      Google will use this information on our behalf to evaluate users’ use of our online service, to compile reports on activities within this online service, and to provide us with other services related to the use of this online service and internet usage. In doing so, pseudonymous user profiles may be created from the processed data.

      We use Google Analytics only with IP anonymization enabled. This means that the IP address of users is truncated by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the United States and truncated there.

      The IP address transmitted by the user’s browser is not merged with other data held by Google. Users can prevent the storage of cookies by adjusting their browser software settings accordingly; users can also prevent the collection of data generated by the cookie and related to their use of the online service by Google, as well as the processing of this data by Google, by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de.

      For more information on Google’s use of data, as well as options for settings and opting out, please refer to Google’s Privacy Policy (https://policies.google.com/technologies/ads) as well as in the settings for the display of advertisements by Google(https://adssettings.google.com/authenticated).

      Users’ personal data is deleted or anonymized after 14 months.

      Google AdWords and Conversion Tracking

      Based on our legitimate interests (i.e., our interest in the analysis, optimization, and commercial operation of our online services within the meaning of Article 6(1)(f) of the GDPR), we use the services of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, (“Google”).

      Google is certified under the Privacy Shield Agreement and thereby guarantees compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

      We use the Google "AdWords" online marketing service to place ads on the Google advertising network (e.g., in search results, in videos, on websites, etc.) so that they are displayed to users who are presumed to have an interest in the ads. This allows us to display ads for and within our online offering in a more targeted manner, so that users are presented only with ads that potentially match their interests. If, for example, a user is shown ads for products they have shown interest in on other online offerings, this is referred to as “remarketing.” For these purposes, when our website or other websites where the Google advertising network is active are accessed, a Google code is executed directly by Google, and so-called (re)marketing tags (invisible graphics or code, also known as “web beacons”) are embedded into the website. With their help, an individual cookie—i.e., a small file—is stored on the user’s device (comparable technologies may also be used instead of cookies). This file records which websites the user visits, what content they are interested in, and which offers the user has clicked on, as well as technical information about the browser and operating system, referring websites, visit duration, and other details regarding the use of the online service.

      We also receive an individual “conversion cookie.” The information collected via the cookie is used by Google to generate conversion statistics for us. However, we only learn the anonymous total number of users who clicked on our ad and were redirected to a page tagged with a conversion tracking tag. We do not, however, receive any information that can be used to personally identify users.

      User data is processed pseudonymously within the Google advertising network. This means that Google does not, for example, store or process the user’s name or email address, but instead processes the relevant data on a cookie-by-cookie basis within pseudonymous user profiles. This means that, from Google’s perspective, the ads are not managed and displayed for a specifically identified person, but for the cookie holder, regardless of who that cookie holder is. This does not apply if a user has expressly permitted Google to process the data without this pseudonymization. The information collected about users is transmitted to Google and stored on Google’s servers in the United States.

      For more information on Google’s use of data, as well as options for settings and opting out, please refer to Google’s Privacy Policy (https://policies.google.com/technologies/ads) as well as in the settings for the display of advertisements by Google(https://adssettings.google.com/authenticated).

      Facebook Pixel, Custom Audiences, and Facebook Conversion

      Within our online platform, we use the so-called "Facebook Pixel" from the social network Facebook—operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA, or, if you are based in the EU, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”).

      Facebook is certified under the Privacy Shield Agreement and thereby guarantees compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

      With the help of the Facebook Pixel, Facebook is able, on the one hand, to identify visitors to our online offering as a target group for the display of ads (so-called "Facebook Ads"). Accordingly, we use the Facebook Pixel to display the Facebook Ads we place only to those Facebook users who have shown an interest in our online offering or who exhibit certain characteristics (e.g., interests in specific topics or products, determined based on the websites visited), which we transmit to Facebook (so-called “Custom Audiences”). With the help of the Facebook Pixel, we also aim to ensure that our Facebook Ads align with users’ potential interests and do not come across as intrusive. With the help of the Facebook Pixel, we can also track the effectiveness of Facebook ads for statistical and market research purposes by seeing whether users were redirected to our website after clicking on a Facebook ad (so-called “conversion”).

      Facebook processes the data in accordance with Facebook’s Data Use Policy. General information regarding the display of Facebook ads can be found in Facebook’s Data Use Policy:https://www.facebook.com/policy. You can find specific information and details about the Facebook Pixel and how it works in Facebook’s Help Center:https://www.facebook.com/business/help/651294705016616.

      You can object to the collection of data via the Facebook Pixel and the use of your data for the display of Facebook ads. To control the types of ads displayed to you on Facebook, you can visit the page set up by Facebook and follow the instructions regarding usage-based advertising settings:https://www.facebook.com/settings?tab=ads. The settings are platform-independent, meaning they apply to all devices, such as desktop computers or mobile devices.

      You can also object to the use of cookies for audience measurement and advertising purposes via the Network Advertising Initiative’s opt-out page (http://optout.networkadvertising.org/) and additionally the U.S. website (http://www.aboutads.info/choices) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/).

      Social media presence

      We maintain a presence on social media networks and platforms to communicate with customers, prospective customers, and users who are active there and to inform them about our services.

      Please note that this may involve the processing of user data outside the European Union. This may pose risks to users, as it could, for example, make it more difficult to enforce their rights. With regard to U.S. providers certified under the Privacy Shield, we note that they thereby commit to complying with EU data protection standards.

      Furthermore, user data is generally processed for market research and advertising purposes. For example, usage profiles can be created based on users’ behavior and the resulting interests. These user profiles can in turn be used, for example, to display advertisements within and outside the platforms that are presumed to correspond to users’ interests. For these purposes, cookies are generally stored on users’ computers, in which users’ usage behavior and interests are recorded. Furthermore, data may also be stored in the user profiles regardless of the devices used by users (particularly if users are members of the respective platforms and are logged in to them).

      The processing of users’ personal data is based on our legitimate interests in effectively informing users and communicating with them in accordance with Art. 6(1)(f) of the GDPR. If users are asked by the respective providers to consent to data processing (i.e., to give their consent, e.g., by checking a box or clicking a button), the legal basis for the processing is Art. 6(1)(a) and Art. 7 of the GDPR.

      For a detailed description of the respective processing activities and the options to object (opt-out), please refer to the information provided by the providers via the links below.

      We also note that requests for information and the exercise of user rights are most effectively addressed directly with the providers. Only the providers have access to the users’ data and can take appropriate measures directly and provide information. Should you nevertheless require assistance, you may contact us.

      - Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) - Privacy Policy:https://www.facebook.com/about/privacy/, Opt-Out:https://www.facebook.com/settings?tab=adsundhttp://www.youronlinechoices.com, Privacy Shield:https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active.

      - Google/YouTube (Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) – Privacy Policy: https://policies.google.com/privacy, Opt-out:https://adssettings.google.com/authenticated, Privacy Shield:https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active.

      - Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, USA) – Privacy Policy / Opt-Out:http://instagram.com/about/legal/privacy/.

      - Twitter (Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA) - Privacy Policy: https://twitter.com/de/privacy, Opt-Out:https://twitter.com/personalization, Privacy Shield:https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active.

      - Pinterest (Pinterest Inc., 635 High Street, Palo Alto, CA 94301, USA) – Privacy Policy / Opt-Out:https://about.pinterest.com/de/privacy-policy.

      - LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland) - Privacy Policyhttps://www.linkedin.com/legal/privacy-policy, Opt-Out:https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active.

      - Xing (XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany) - Privacy Policy/Opt-Out:https://privacy.xing.com/de/datenschutzerklaerung.

      - Wakalet (Wakelet Limited, 76 Quay Street, Manchester, M3 4PR, United Kingdom) - Privacy Policy/Opt-Out:https://wakelet.com/privacy.html.

      Typekit fonts from Adobe

      Based on our legitimate interests (i.e., our interest in the analysis, optimization, and commercial operation of our online offering within the meaning of Article 6(1)(f) of the GDPR), we use external "Typekit" fonts provided by Adobe Systems Software Ireland Limited, 4-6 Riverwalk, Citywest Business Campus, Dublin 24, Republic of Ireland. Adobe is certified under the Privacy Shield Framework and thereby guarantees compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000TNo9AAG&status=Active).

      12. Liability

      12.1 Liability for product defects or damage caused by such defects is governed exclusively by Section 8. Section 4 applies exclusively to claims for damages resulting from delayed delivery.

      12.2 Furthermore, to the extent permitted by law, lockenkopf.com excludes any other liability toward the customer for damages arising in connection with the products, the use of, or the (un)availability of the website www.lockenkopf.com. For example, claims for damages arising from impossibility of performance, non-performance, and tort are excluded against both lockenkopf.com and its vicarious agents, unless there is evidence of intentional or grossly negligent conduct.

      13. Invalidity of Individual Provisions/Reductio ad bonum

      If any provision of these Terms and Conditions is found to be invalid in whole or in part, this shall not affect the validity of the remaining provisions or their intended purpose. The invalid provisions shall be replaced by the relevant statutory provisions.

      14. Governing Law/Jurisdiction

      This Agreement is governed exclusively by Swiss law. The exclusive venue for any disputes with lockenkopf.com is Zurich, Switzerland, subject to any mandatory venue provisions under federal law.

      15. Changes to the Terms and Conditions

      lockenkopf.com expressly reserves the right to amend these Terms and Conditions at any time to reflect current circumstances and to apply them immediately to any orders placed thereafter.

      Zug, January 1, 2025