Privacy policy of Stareno GmbH - Onlineshop www.fensterdichtungen.org

Thank you for your interest in our company. We take data protection seriously.

You can use our website without providing any personal data. If a data subject wishes to make use of our company's services via our website, it may be necessary to process personal data. If the processing of personal data is necessary and there is no legal basis for such processing, we always obtain the consent of the data subject.

The processing of personal data (e.g. name, address, e-mail address or telephone number of a data subject) is always carried out in accordance with the General Data Protection Regulation (GDPR) and in accordance with the country-specific data protection regulations applicable to us.
With the following privacy policy, we would like to inform the public about the type, scope and purpose of the personal data we collect, use and process. This privacy policy also informs data subjects about the rights to which they are entitled.

As the controller, we have implemented numerous technical and organizational measures to ensure the most complete protection possible for personal data processed via our website. However, data transmissions over the Internet can generally contain security gaps. Therefore, 100% protection cannot be guaranteed. For this reason, every data subject can of course also transmit personal data to us alternatively, e.g. by telephone.

1. definitions
This data protection declaration is based on the terms used by the European legislator for the adoption of the GDPR (Article 4 GDPR). This privacy policy should be both easy to read and easy to understand for everyone. To ensure this, we would first like to explain the terms used. These are some of the terms used in this privacy policy

  • "personal data" means any information relating to an identified or identifiable natural person (hereinafter "data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
  • "data subject" means any identified or identifiable natural person whose personal data are processed by the controller
  • "processing" means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction
  • "restriction of processing" means the marking of stored personal data with the aim of limiting their processing in the future
  • "profiling" means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements;
  • "controller" means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;
  • "recipient" means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing;
  • "third party" means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorized to process personal data
  • "Consent" of the data subject means any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.


2. name and contact details of the controller
This data protection information applies to data processing by
Controller: Stareno GmbH represented by the managing director Mr. Hardy Zich, E - Mail: info@fensterdichtungen.org Phone: + 49 ( 0 ) 02957 - 1588, Fax: 1591

3. collection and storage of personal data and the nature and purpose of their use

a) When visiting the website

In principle, you can use our website without disclosing your identity. When you visit our website, the browser used on your device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without any action on your part and stored until it is automatically deleted

  • IP address of the requesting computer,
  • Date and time of access,
  • Name and URL of the accessed file,
  • the website from which access was made (referrer URL)
  • browser used and, if applicable, the operating system of your computer and the name of your access provider.

The aforementioned data is processed by us for the following purposes

  • Ensuring a smooth connection to the website,
  • Ensuring a comfortable use of our website,
  • evaluating system security and stability and
  • for other administrative purposes.

The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest follows from the data collection purposes listed above. Under no circumstances do we use the data collected for the purpose of drawing conclusions about your person.
We also use cookies and analysis services when you visit our website. You can find more detailed explanations on this in sections 5 and 7 of this privacy policy.

b) When using our contact form
If you have questions of any kind, we offer you the opportunity to contact us using a form provided on our website. It is necessary to provide a valid e-mail address so that we know who sent the request and can answer it. Further information can be provided voluntarily. You are free to decide whether you wish to enter this data in the contact form.
Data processing for the purpose of contacting us is carried out in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR on the basis of your voluntarily given consent.
The personal data collected by us for the use of the contact form will be automatically deleted after your inquiry has been dealt with.

c) When placing orders via our website
You can either place orders via our website as a guest without registering, or register in our store as a customer for future orders. The advantage of registering is that you can log in to our store directly with your e-mail address and password in the event of a future order without having to re-enter your contact details.
Your personal data will be entered into an input mask and transmitted to us and stored. If you place an order via our website, we first collect the following data, both in the case of a guest order and in the case of registration in the store:

  • Title, first name, surname,
  • a valid e-mail address,
  • address,
  • telephone number (landline and/or mobile)

This data is collected

  • to be able to identify you as our customer;
  • to be able to process, fulfill and process your order;
  • for correspondence with you;
  • for invoicing purposes;
  • to process any existing liability claims and to assert any claims against you;
  • to ensure the technical administration of our website
  • to manage our customer data.

Your consent to the processing of this data is obtained as part of the ordering process.
The data processing takes place in response to your order and/or registration and is required in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR for the purposes mentioned for the appropriate processing of your order and for the mutual fulfillment of obligations arising from the purchase contract.
The personal data collected by us for the processing of your order will be stored until the expiry of the statutory retention obligation and then deleted, unless we are obliged to store it for a longer period of time in accordance with Art. 6 para. 1 sentence 1 lit. c GDPR due to tax and commercial law storage and documentation obligations (from HGB, StGB or AO) or you have consented to further storage in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.

4. disclosure of data
Your personal data will only be passed on to third parties by us to the service partners involved in the processing of the contract, such as the logistics company commissioned with the delivery and the credit institution commissioned with payment matters. However, in cases where your personal data is passed on to third parties, the scope of the data transmitted is limited to the minimum necessary.

When paying via PayPal, credit card via PayPal, direct debit via PayPal or "purchase on account" via PayPal, we pass on your payment data to PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal"), as part of the payment processing. PayPal reserves the right to carry out a credit check for the payment methods credit card via PayPal, direct debit via PayPal or "purchase on account" via PayPal. PayPal uses the result of the credit check with regard to the statistical probability of non-payment for the purpose of deciding on the provision of the respective payment method. The credit report may contain probability values (so-called score values). If score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. Among other things, address data is included in the calculation of the score values. Further data protection information can be found in the PayPal Privacy Policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full

Your personal data will not be transferred to third parties for purposes other than those mentioned above.
We also only pass on your personal data to third parties if:

  • you have given your express consent to this in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR,
  • the disclosure pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR is necessary for the assertion, exercise or defense of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data,
  • in the event that there is a legal obligation for the disclosure pursuant to Art. 6 para. 1 sentence 1 lit. c GDPR, and
  • this is legally permissible and necessary for the processing of contractual relationships with you in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR.

As part of the ordering process, your consent to the transfer of your data to third parties is obtained.

5. use of cookies
We use cookies on our website. These are small files that your browser automatically creates and that are stored on your end device (laptop, tablet, smartphone, etc.) when you visit our website. Cookies do not cause any damage to your end device and do not contain any viruses, Trojans or other malware.

Information is stored in the cookie that results in each case in connection with the specific end device used. However, this does not mean that we obtain direct knowledge of your identity.
On the one hand, the use of cookies serves to make the use of our website more convenient for you. For example, we use so-called session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted after you leave our site.

In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your device for a specified period of time. If you visit our site again to make use of our services, it is automatically recognized that you have already visited us and which entries and settings you have made so that you do not have to enter them again.
On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you (see section 7). These cookies enable us to automatically recognize that you have already visited our website when you visit it again. These cookies are automatically deleted after a defined period of time.
The data processed by cookies is required for the purposes mentioned to protect our legitimate interests and those of third parties in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.

Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a message always appears before a new cookie is created. However, completely deactivating cookies may mean that you cannot use all the functions of our website.

6. links to third-party websites
The links published on our website are researched and compiled by us with the greatest possible care. However, we have no influence on the current and future design and content of the linked sites. We are not responsible for the content of the linked pages and expressly do not adopt the content of these pages as our own. The provider of the linked website is solely liable for illegal, incorrect or incomplete content and for damages resulting from the use or non-use of the information. The liability of those who merely refer to the publication via a link is excluded. We are only responsible for external references if we have positive knowledge of them, i.e. also of any illegal or punishable content, and if it is technically possible and reasonable for us to prevent their use.

7 Analysis and tracking tools
The tracking measures listed below and used by us are carried out on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR. With the tracking measures used, we want to ensure a needs-based design and the continuous optimization of our website. On the other hand, we use the tracking measures to statistically record the use of our website and to evaluate it for the purpose of optimizing our offer for you. These interests are to be regarded as legitimate within the meaning of the aforementioned provision.
The respective data processing purposes and data categories can be found in the corresponding tracking tools.

a) Google Analytics
We use Google Analytics, a web analysis service of Google Inc (https://www.google.de/intl/de/about/) (4 Dublin, Gordon House Barrow St, Ireland; hereinafter referred to as "Google") for the purpose of designing and continuously optimizing our pages to meet your needs. In this context, pseudonymized user profiles are created and cookies (see section 5) are used. The information generated by the cookie about your use of this website, such as

  • Browser type/version,
  • operating system used,
  • Referrer URL (the previously visited page),
  • Host name of the accessing computer (IP address),
  • time of the server request,

are transmitted to a Google server in the USA and stored there. The information is used to evaluate the use of the website, to compile reports on website activity and to provide other services relating to website activity and internet usage for the purposes of market research and the needs-based design of this website. This information may also be transferred to third parties if this is required by law or if third parties process this data on our behalf. Under no circumstances will your IP address be merged with other Google data. The IP addresses are anonymized so that they cannot be assigned (IP masking).

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of our website.
You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing a browser add-on (https://tools.google.com/dlpage/gaoptout?hl=de).

As an alternative to the browser add-on, especially for browsers on mobile devices, you can also prevent Google Analytics from collecting data by clicking on the aforementioned link. An opt-out cookie will be set to prevent the future collection of your data when you visit our website. The opt-out cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you must set the opt-out cookie again.

Further information on data protection in connection with Google Analytics can be found under the following link in the Google Analytics Help: https://support.google.com/analytics/answer/6004245?hl=de

Click here to use Google Analytics opt-out.

b)Google Adwords Conversion Tracking
We also use Google Conversion Tracking to statistically record the use of our website and to evaluate it for the purpose of optimizing our website for you. Google Adwords places a cookie (see section 5) on your computer if you have reached our website via a Google ad.

These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of the Adwords customer's website and the cookie has not yet expired, Google and the customer can recognize that the user clicked on the ad and was redirected to this page.

Each Adwords customer receives a different cookie. Cookies can therefore not be tracked via the websites of Adwords customers. The information collected using the conversion cookie is used to generate conversion statistics for Adwords customers who have opted for conversion tracking. Adwords customers are told the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information with which users can be personally identified.
If you do not wish to participate in the tracking process, you can also refuse the setting of a cookie required for this - for example, by using a browser setting that generally deactivates the automatic setting of cookies. You can also deactivate cookies for conversion tracking by setting your browser to block cookies from the domain "www.googleadservices.com". Google's privacy policy on conversion tracking can be found at the following link: https://services.google.com/sitestats/de.html

8. social media plugins
We use social plugins of social networks (e.g. Facebook, Twitter, Google+) on our website on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR in order to make our company better known. The underlying advertising purpose is to be regarded as a legitimate interest within the meaning of the GDPR. Responsibility for data protection-compliant operation must be guaranteed by the respective provider. We integrate these plugins using the so-called two-click method to protect visitors to our website in the best possible way.

a) Facebook
Social media plugins from Facebook are used on our website to make their use more personal. We use the "LIKE" or "SHARE" button for this purpose. This is an offer from Facebook.

When you visit a page on our website that contains such a plugin, your browser establishes a direct connection with the Facebook servers. The content of the plugin is transmitted by Facebook directly to your browser, which integrates it into the website.
By integrating the plugins, Facebook receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Facebook account or are not currently logged in to Facebook. This information (including your IP address) is transmitted directly from your browser to a Facebook server in the USA and stored there.

If you are logged in to Facebook, Facebook can directly associate your visit to our website with your Facebook account. If you interact with the plugins, for example by clicking the "LIKE" or "SHARE" button, the corresponding information is also transmitted directly to a Facebook server and stored there. The information is also published on Facebook for everyone to see.

Facebook can use this information for the purposes of advertising, market research and the needs-based design of Facebook pages. For this purpose, Facebook creates usage, interest and relationship profiles, e.g. to evaluate your use of our website with regard to the advertisements displayed to you on Facebook, to inform other Facebook users about your activities on our website and to provide other services associated with the use of Facebook.

If you do not want Facebook to assign the data collected via our website to your Facebook account, you must log out of Facebook before visiting my website.

The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as your rights in this regard and setting options to protect your privacy can be found in the data protection information, in particular Facebook's data policy, which you can view at the following link: https://www.facebook.com/about/privacy/

b) Twitter
Plugins of the short message network of Twitter Inc (Twitter) are integrated on our website. You can recognize the Twitter plugins (tweet button) by the Twitter logo on our website. You can find an overview of tweet buttons under this link on Twitter: https://dev.twitter.com/web/tweet-button
When you visit a page on our website that contains such a plugin, a direct connection is established between your browser and the Twitter server. Twitter receives the information that you have visited our site with your IP address. If you click on the Twitter "tweet button" while you are logged into your Twitter account, you can link the content of our pages to your Twitter profile. This allows Twitter to associate your visit to our website with your user account. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the transmitted data or its use by Twitter.

If you do not want Twitter to be able to associate your visit to our pages, please log out of your Twitter user account.
Further information on this can be found in Twitter's privacy policy, which you can view here: https://twitter.com/de/privacy

c) Google "+1" button
Our website uses the "+1" button of the Google social network, which is operated by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043-1351, USA. The button is marked with a "+1".
The "+1" button is an abbreviation for "this is pretty cool" or "check this out". The button is not used to record your visits to the web.

If a web page on our website contains the "+1" button, your internet browser will load and display this button from the Google server. The Google server is automatically informed of the website you have visited on our website. When a +1 button is displayed, Google does not permanently log your browser history, but only for a period of up to two weeks.

Google stores this data about your visit for this period for system maintenance and troubleshooting purposes. However, this data is not structured according to individual profiles, user names or URLs. This information is also not accessible to website publishers or advertisers. This information is only used for maintenance and troubleshooting purposes in Google's internal systems. Your visit to a page with a +1 button is also not analyzed by Google in any other way.

There is no further analysis of your visit to a website on our website with a "+1" button.
The assignment of +1 itself is a public process, i.e. anyone who carries out a Google search or calls up content on the web to which you give +1 can potentially see that you have given the content in question a +1. Therefore, only give +1 if you are absolutely sure that you want to share this recommendation with the whole world.

A click on this +1 button serves as a recommendation for other users in Google's search results. You can publicly announce that you like our website, that you approve of our website or that you can recommend our website. If you have registered for Google+ and are logged in, the +1 button will turn blue when you click on it. The +1 is also added to the +1 tab in your Google profile. On this tab, you can manage your +1s and decide whether you want to make the +1 tab public.

In order to save your +1 recommendation and make it publicly accessible, Google collects information about the URL you recommended, your IP address and other browser-related information via your profile. If you withdraw your +1, this information will be deleted. All of your +1 recommendations are listed on the +1 tab in your profile.

Further information and the applicable data protection provisions of Google can be found at https://www.google.de/intl/de/policies/privacy/. Further information from Google about the Google+1 button can be found at the link https://developers.google.com/+/web/buttons-policy

9. rights of data subjects
You have the right:

  • to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of appeal, the origin of your data if it was not collected by me, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information on its details.
  • in accordance with Art. 16 GDPR, to immediately request the correction of incorrect or incomplete personal data stored by us
  • in accordance with Art. 17 GDPR, to request the erasure of your personal data stored by us, unless the processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defense of legal claims
  • in accordance with Art. 18 GDPR, to demand the restriction of the processing of your personal data if the accuracy of the data is disputed by you, the processing is unlawful but you refuse to delete it and we no longer need the data, but you need it to assert, exercise or defend legal claims or you have lodged an objection to the processing in accordance with Art. 21 GDPR
  • in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request that it be transmitted to another controller
  • in accordance with Art. 7 para. 3 GDPR, to revoke your consent once given to us at any time. As a result, we may no longer continue the data processing based on this consent in the future and
  • to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters.


10. right to object
If your personal data is processed on the basis of legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR, provided that there are reasons for this arising from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right to object, which will be implemented by us without specifying a particular situation.

If you wish to exercise your right of revocation or objection, simply send an e-mail to: info@fensterdichtungen.org

11. data security
We use the widespread SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser when you visit our website. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the lower status bar of your browser.

We also use suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

12. topicality and amendment of this privacy policy
This privacy policy is currently valid and was last updated in March 2018.
It may become necessary to amend this privacy policy as a result of the further development of our website and services or due to changes in legal or official requirements. The current privacy policy can be accessed and printed out on our website at any time

13 TrustedShops, Trustbage & Widget

Trusted Shops widgets are integrated on this website to display Trusted Shops services (e.g. seal of approval, collected reviews) and to offer Trusted Shops products to buyers after an order, provided you give us your consent.

The legal basis for processing is Art. 6 para. 1 sentence 1 lit. a GDPR. The Trustbadge and the services advertised with it are an offer from Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Cologne, with whom we are jointly responsible for data protection in accordance with Art. 26 GDPR. As part of this data protection notice, we inform you below about the essential contents of the contract in accordance with Art. 26 para. 2 GDPR.

The trust badge is provided by a US CDN provider (content delivery network) as part of a joint responsibility. An appropriate level of data protection is ensured by standard data protection clauses and other contractual measures. Further information on data protection at Trusted Shops GmbH can be found in their privacy policy.

When you access the Trustbadge, the web server automatically saves a so-called server log file, which also contains your IP address, date and time of access, amount of data transferred and the requesting provider (access data) and documents the access. The IP address is anonymized immediately after collection so that the stored data cannot be assigned to your person. The anonymized data is used in particular for statistical purposes and for error analysis.

After completing your order, your e-mail address hashed using a cryptological one-way function is transmitted to Trusted Shops GmbH.

The legal basis is Art. 6 para. 1 sentence 1 lit. f GDPR. This serves to check whether you are already registered for services with Trusted Shops GmbH and is therefore necessary for the fulfillment of our and Trusted Shops' overriding legitimate interests in the provision of the buyer protection linked to the specific order and the transactional evaluation services in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR. If this is the case, further processing will be carried out in accordance with the contractual agreement concluded between you and Trusted Shops. If you have not yet registered for the services, you will then be given the opportunity to do so for the first time. Further processing after registration is also based on the contractual agreement with Trusted Shops GmbH. If you do not register, all transmitted data will be automatically deleted by Trusted Shops GmbH and a personal reference is then no longer possible.

Within the framework of the joint responsibility existing between us and Trusted Shops GmbH, please contact Trusted Shops GmbH in the event of data protection issues and to assert your rights using the contact options provided in the data protection information linked above. Irrespective of this, you can always contact the controller of your choice. If necessary, your request will then be forwarded to the other responsible party for a response.