Your data protection rights

You have the right to obtain confirmation as to whether we process your personal data and, if so, to receive a copy of that data.

How to exercise: Log in to your account → Settings → Download my data. You will receive a JSON file containing your profile, addresses, consents, payment method metadata, orders, invoices, and (if applicable) staff-related data.

You have the right to have inaccurate personal data corrected and incomplete data completed.

How to exercise: Log in → Settings → Personal (or relevant section) to update your name, email, phone, and addresses. You can also contact us using the details in our Imprint.

You have the right to request erasure of your personal data in certain circumstances (e.g. data no longer necessary, consent withdrawn, objection, or unlawful processing).

How to exercise: Log in → Settings → Delete account. You will be asked to confirm your password and to type "delete my account". This permanently deletes your account and associated data (profile, addresses, consents, orders, invoices, staff data, etc.). This action cannot be undone.

You have the right to receive the personal data you provided to us in a structured, commonly used, machine-readable format, and to transmit it to another controller where technically feasible.

How to exercise: The same Download my data export (Settings → Download my data) provides your data in JSON format, which you can use or transfer as needed.

In certain situations you have the right to request that we restrict the processing of your data (e.g. while accuracy is contested or you have objected and we are verifying grounds).

How to exercise: Contact us using the details in our Imprint. We will respond in line with the GDPR.

You have the right to object to processing based on legitimate interest or for direct marketing. For marketing, we honour your consent preferences at all times.

How to exercise: Log in → Settings → Consent to turn off marketing emails and adjust order-related emails. For other objections, contact us via the Imprint.

Where processing is based on your consent, you can withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing before withdrawal.

How to exercise: Settings → Consent to update marketing and order email preferences. For other consent-based processing, contact us.

You have the right to lodge a complaint with a supervisory authority, in particular in the EU Member State of your residence, place of work, or place of the alleged infringement. In Germany, you can contact the relevant state data protection commissioner (Landesdatenschutzbeauftragte/r). A list of German data protection authorities can be found at BfDI – Länder.

For any request regarding your data protection rights, please use the contact details in our Imprint. For full details on how we process your data, see our Privacy Policy.