Privacy policy
Saint Charles Organics GmbH (Saint Charles) carefully selects its partners and suppliers, and personal contact is particularly important to us. Trust is also important to us in the area of data protection, which is why we rely on local partners known to us for the operation of our Internet platform. The protection of your personal data is of particular concern to us. We therefore process your data exclusively on the basis of the legal provisions (DSGVO, TKG 2003).
In this data protection information, we inform you about the most important aspects of data processing within the framework of our website and fulfil our legal duty to inform you about the storage of data, the type of data and its purpose.
Subject of data protection
The subject of data protection is personal data. This is individual information about personal or factual circumstances of a specific or identifiable natural person. For example, name, postal address, e-mail address, but also usage data such as the IP address of a computer.
Contact us
If you contact us by e-mail, the data you provide will be stored by us for six months for the purpose of processing the enquiry and in case of follow-up questions. We do not pass on this data without your consent.
Data storage
We would like to point out that for the purpose of simplifying the shopping process in our online shop and for the subsequent processing of the contract, the IP data of the connection owner is stored by the web shop operator within the framework of cookies.
In addition, the following data will also be stored by us for the purpose of processing the contract with or without registration (creation of a customer account): Name, address, e-mail address, telephone. We do not store credit card numbers when paying by credit card. These are forwarded directly to our certified credit card partner to initiate the payment.
The data you provide is necessary for the fulfilment of the contract or for the implementation of pre-contractual measures. Without this data, we cannot conclude the contract with you. Data is not transferred to third parties, with the exception of the transfer of credit card data to the processing bank/payment service provider for the purpose of debiting the purchase price, to the transport company/shipping company commissioned by us for the delivery of the goods or other service providers as well as to state institutions and authorities entitled to receive information only within the scope of legal obligations or on the basis of a court decision, such as to our tax advisor for the fulfilment of our obligations under tax law.
After the shopping process has been cancelled, the data stored by us will be pseudonymised after 30 days. In the event of a contract being concluded, all data from the contractual relationship will be stored until the expiry of the retention period under tax law (7 years)
The data name, address, purchased goods and date of purchase will be stored until the expiry of the product liability (10 years). The data processing is carried out on the basis of the legal provisions of § 96 para 3 TKG as well as Art 6 para 1 lit a (consent) and/or lit b (necessary for the fulfilment of the contract) of the DSGVO.
Cookies
Our website uses so-called cookies. These are small text files that are stored on your end device with the help of the browser. They do not cause any harm.
We use cookies to make our website user-friendly and to enable the use of certain functions. Some cookies remain stored on your terminal device until you delete them. They enable us to recognise your browser the next time you visit.
If you do not want this, you can set up your browser so that it informs you about the setting of cookies and you only allow this in individual cases. With Chrome, you can reach these settings via Settings > Show advanced settings > Content settings > All cookies and website data. With Internet Explorer under Settings > Internet Options > Privacy > Block all cookies. For Firefox under Settings > Privacy > Delete individual cookies. With Safari under Settings > Privacy > Block all cookies. With Opera, under Settings > Privacy > Block data storage for websites.
If you disable cookies, the functionality of our website may be limited.
Web Analysis
Our website uses functions of the web analysis service Google Analytics [Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA]. To this end, cookies are used, which enable an analysis of the use of the website by your users. The information thus generated is transferred to the provider's server and stored there. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. You can prevent this by setting up your browser so that no cookies are stored.
Because the operator of this website has activated IP anonymisation, your IP address will, however, be shortened beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. Furthermore, you can prevent the collection of the data generated by the cookie and related to your use of the website (incl. your IP address) by Google as well as the processing of this data by Google by downloading and installing the browser plugin available under this link.
We have concluded a corresponding contract for commissioned data processing with the provider.
Your IP address is recorded, but immediately pseudonymised, e.g. by deleting the last 8 bits. This means that only a rough localisation is possible.
The relationship with the web analytics provider is based on an adequacy decision of the European Commission ("Privacy Shield").
The data processing is carried out on the basis of the legal provisions of § 96 para 3 TKG as well as Art 6 para 1 lit a (consent) and/or f (justified interest) of the DSGVO.
Our concern in terms of the GDPR (legitimate interest) is the improvement of our offer and our website. Since the privacy of our users is important to us, the user data is pseudonymised.
The user data will be retained for a period of 26 months.
Facebook Pixel, Custom Audiences und Facebook Remarketing
Within our online offer, the so-called "Facebook pixel" of the social network Facebook, which is operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA, or if you are a resident of the EU, Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Facebook"), is used due to our legitimate interests in the analysis, optimisation and economic operation of our online offer and for these purposes.
With the help of the Facebook pixel, it is possible for Facebook to determine the visitors to our website as the target group for the display of advertisements, so-called "Facebook ads". Accordingly, we use the Facebook pixel to display the Facebook ads placed by us only to such Facebook users.
Newsletter
You have the option of subscribing to our newsletter via our website. For this, we need your e-mail address and your declaration that you agree to receive the newsletter.
In order to provide you with targeted information, we also collect and process voluntarily provided data on birthday.
We create and send our newsletter using the newsletter service Klaviyo [Klaviyo, 125 Summer St, Floor 6 Boston, MA 02111 United States]. The information transmitted by using this service is usually transferred to a Klaviyo server in the USA and stored there.
Once you have signed up for the newsletter, we will send you a confirmation email with a link to confirm your subscription.
You can cancel your subscription to the newsletter at any time. Please send your cancellation to the following e-mail address: office@saint-charles.eu. We will then immediately delete your data in connection with the newsletter dispatch. If you wish to delete or update your data, this is also possible directly within the newsletter. At the end of each newsletter you will find links with which you can easily update your data yourself.
Smile
When using a customer account, our website uses the features of the customer loyalty program Smile [Smile.io, 305 King Street West, Suite 200 Kitchener, ON N2G 1B9 Canada]. To this end, data is collected and maintained to enable us to run a customer loyalty program. The following information is collected and stored by Smile: Name, Email, Date of Birth (if provided by you). This information is usually transferred to a Smile server in Canada and stored there.
You can prevent this by not creating a customer account. You can revise the processing of your data by Smile at any time by deleting your customer account. Data of people who do not have a customer account will also not be transferred to Smile and will also be deleted retroactively.
Your rights
You are generally entitled to the rights of information, correction, deletion, restriction, data portability, revocation and objection.
The right to information includes the possibility to request information about the data stored about him or her, also insofar as it relates to the origin of this data, recipients or categories of recipients to whom data is disclosed, as well as the purpose of the storage.
The right to erasure includes the possibility of deleting personal data processed for one's own purposes as soon as your knowledge is no longer necessary for the fulfilment of the purpose of the storage. Deletion shall be replaced by blocking if legal, statutory or contractual retention periods prevent deletion, if there is reason to believe that deletion would impair the interests of the data subject that are worthy of protection, or if deletion is not possible or only possible with disproportionate effort due to the special nature of the storage.
In addition, you can have your data collected by us blocked, corrected or deleted at any time. Deletion also takes place if you revoke your consent to the collection, processing and use of personal data. If the revocation takes place during an ongoing business transaction, the deletion will take place immediately after its completion.
Further statutory deletion or blocking obligations shall remain unaffected by this.
If you believe that the processing of your data violates data protection law or that your data protection rights have otherwise been violated in some way, you can complain to the supervisory authority. In Austria, this is the data protection authority.
To exercise your rights of access, rectification, erasure, restriction, data portability, revocation and opposition, please contact:
Saint Charles Organics GmbH
Esterhazygasse 11
1060 Wien
Austria
Email: office@saint-charles.eu
Technical and organisational measures
We undertake to take the technical and organisational measures necessary to ensure the implementation of the regulations on data protection, provided that the effort is in a reasonable proportion to the intended protective purpose. When communicating by e-mail, we cannot guarantee complete data security, so we recommend that you send confidential information by post.
You can reach us at the following contact details:
Saint Charles Organics GmbH
Esterhazygasse 11
1060 Vienna
Austria
Phone: +43 (0)1 8907987
Email: office@saint-charles.eu