Privacy Policy and Information Obligation

Identity and Contact Data

This includes information you provide to us during registration or contact, such as name, date of birth (for age verification), and email address. This data is essential to offer you our services in a personalized way.

Technical Usage and Device Data

We automatically collect data about your end device and your usage behavior. This includes IP address, browser type, operating system, referral sources, and date and time of access. This information helps us ensure the technical stability and security of the systems.

Transaction and Communication Data

If you use payment services or communicate with our support, we store transaction details (without full credit card data) and correspondence logs to efficiently process inquiries and maintain legal records.

The processing of your data is carried out exclusively on the basis of clearly defined legal grounds:

H4: Contract Fulfillment

For the provision of the services you requested and for the management of your user account.

H4: Legitimate Interest

For improving our service quality, preventing fraud, and ensuring IT security.

H4: Legal Obligation

For compliance with tax, commercial, or regulatory requirements (e.g., age verification).

H4: Consent

If you have given us explicit consent for specific purposes, such as marketing newsletters.

We use the collected information for the following purposes:

• Management and security of your user account.
• Conducting analyses to optimize the user interface.
• Answering customer inquiries via our support channels.
• Personalization of content and offers based on your preferences.
• Detection and prevention of abusive activities or cyber attacks.

We store personal data only for as long as necessary to fulfill the purposes mentioned above or as required by legal retention periods. After the purpose ceases or the deadlines expire, the data is routinely deleted or permanently anonymized.

Your data will only be transmitted to third parties if this is necessary for contract fulfillment (e.g., to payment service providers or IT infrastructure partners), if we are legally obliged to do so, or if you have given your consent. We carefully select our service providers and contractually bind them to strict data protection standards.

Should data be transferred to countries outside the European Economic Area (EEA), we ensure that an adequate level of data protection is guaranteed through standard contractual clauses of the EU Commission or comparable guarantees.

We employ modern technical and organizational security measures (TOMs) to protect your data from accidental or intentional manipulation, loss, destruction, or access by unauthorized persons. Our security measures are continuously improved in line with technological developments. Please note, however, that no transmission over the internet can be absolutely secure.

According to the GDPR, you have the following rights:

• Right to information about your data stored by us.
• Right to rectification of inaccurate or incomplete data.
• Right to erasure ("right to be forgotten"), provided that no legal retention obligations prevent it.
• Right to restriction of processing.
• Right to data portability in a common format.
• Right to object to processing based on legitimate interest.

To exercise these rights, please contact us by email at [email protected].

This Privacy Policy may be updated to reflect changes in our practices or legal requirements. We will inform you of significant changes on our website.