Privacy policy

The protection of your personal data is important to us and we handle it accordingly. In the following privacy policy, we would like to give you an overview of the protection we offer and what exactly happens to your data. Your data will not be sold, rented or exchanged by us.

Subject of the privacy policy

In this declaration, we refer to the data that becomes known when you visit our website and provide information on how we handle this data. We only collect personal data if it is required to process an inquiry via our contact form, our chat function or to process a contract. This is done entirely to the extent provided by you.

This privacy policy only applies to this website. If you are redirected to other pages via links, please inform yourself directly on the redirected website about the respective handling of your data.

Name and contact details of the person responsible/contact data protection

heatness® South Africa
13 Eagle Avenue
7806 Cape Town, South Africa
Tel: +27 60 484 6885
info@heatness.co.za

heatness® GmbH (hereinafter: heatness®) proceeds in accordance with the statutory provisions in all data processing operations (e.g. collection, processing and transmission). The following statement provides you with an overview of what type of data is collected and how it is used and passed on, what security measures heatness® takes to protect your data and how you can exercise your rights.

§ 1 Processing and use of personal data

1.1 Website in general

We process your data exclusively in accordance with Austrian and European legal provisions (GDPR 2018, TKG 2003). By visiting heatness.at, information about the time of the visit, the IP address of the computer, information about the web browser and the operating system is automatically collected.

Users of this website consent to the processing of personal data in accordance with this declaration. The processing of personal data includes in detail the storage, transmission, deletion and blocking of this data. Your personal data will not be passed on to third parties without your consent.

The subsequent further use of personal data for sending advertising and market research purposes takes place with your consent, which must be obtained separately. You naturally have the unrestricted right to withdraw your consent at a later date.

When personal data is entered or transmitted via our website, it is checked manually or automatically for validity and up-to-dateness against the existing database and, if necessary, compared in order to correct the data stored by us. For this purpose, it may be necessary for our employees to contact you. This is done by e-mail or telephone. The data you enter will be used exclusively for processing the order or handling an inquiry; the data will not be passed on to third parties. The data will be deleted as soon as the respective contract has been fulfilled and there is no longer a legal obligation to store the data.

1.2 Contact form

Personal data (first name, surname, e-mail address) that you send to us via our contact form will be stored together with your details from the form and the date and time of the inquiry. This is stored for the purpose of processing your inquiry and in the event of follow-up questions. We will not pass on this data without your consent. Your consent will be obtained for the processing of this data before it is transmitted and reference will be made to this privacy policy.

1.3 Newsletter

If you would like to receive the newsletter from heatness®, you can do so by registering with your name and e-mail address and clicking on a checkbox.You will then receive an e-mail with a confirmation link.By clicking on this link, you confirm once again that you wish to receive the newsletter (double opt-in).With your consent, the data processing is carried out in accordance with Article 6 (a) GDPR. The newsletter subscription can be canceled at any time by clicking on the unsubscribe link directly in the email or by sending an email to office@heatness.at.

§ 2 Disclosure and deletion of personal data

2.1 Visiting heatness.at

When you visit heatness.at, data is automatically stored (see § 1). This data is not forwarded to third parties.

2.2 Online shop

Data collected during the ordering process will only be forwarded to third parties if this is absolutely necessary for the processing of the order or for payment.

2.3 Contact form

Your inquiry may be forwarded internally within the company in order to process the order or respond to it. It will not be passed on to third parties.

2.4 Newsletter

The data provided for newsletter registration (name, e-mail address) will not be passed on to third parties. You can unsubscribe at any time by clicking on the unsubscribe link in the newsletter or by sending us an e-mail. If you wish to delete all your data in connection with the newsletter mailing, please contact us at office@heatness.at.

2.5 Transmission of your data to authorities or other public bodies

We will only pass on your data to third parties if a request is made by a public authority/governmental body. We are obliged to do so.

§ 3 Security notice

We have taken comprehensive technical and organizational measures to protect your personal data in the best possible way. All data stored in the course of using heatness.at is protected by technical and physical measures as well as procedural measures. In this context, only authorized employees who are familiar with the privacy policy and treat personal information confidentially have access to sensitive information.

Our website heatness.at is protected by a software firewall, which ensures that sensitive data is secure and protected from unauthorized access. Our website is protected according to the current state of the art and offers a high level of security against unauthorized access. However, we would like to point out that data transmission on the Internet (e.g. when communicating via e-mail or via non-encrypted websites) can generally have security gaps. Complete protection of data against access by third parties is not possible.

3.2 Secure transmission of data

Sensitive data, such as name, telephone number, e-mail address, billing or delivery address, which must be entered during an order process in the online store, are transmitted in encrypted form (industry standard Secure Socket Layer (“SSL”) technology, SSL encryption version 3).

3.3 Bank details/credit card information/PayPal account details

We do not store any bank details/credit card information/PayPal account details required for payment. These are collected or processed directly by the payment service provider and encrypted via hypertext transfer protocol secure (“https”). Information required for payment is transmitted. This includes, for example, name, purchase amount and billing information. We have no influence on how your data is further processed.

PayPal: Further information can be found in PayPal’s privacy policy.

§ 4 Cookies

4.1 What are cookies?

Cookies are small text files that websites store on your computer when you visit them. Information is stored in these text files, which can be read by the website when you visit it again later.

Some cookies are necessary to ensure that the website functions properly. Other cookies are merely beneficial for the visitor. For example, they store the user name or language settings in a secure manner. Cookies are used to save you having to re-enter the same information every time you visit a website.

4.2 Why we use cookies

We use cookies to provide our customers with a shopping experience that is optimally tailored to their personal needs. This allows us to save your IP address when you use our chat function so that we know immediately who we are dealing with and how we can best help you if you contact us again.

Cookies can also be used to optimize the performance of a website. They facilitate the logout process or help you to find certain products more quickly.

4.3 How do I deactivate cookies?

You can easily deactivate cookies by adjusting your browser settings accordingly. Please note:Deactivating cookies may limit the functionality of our website.

This works differently depending on the browser. We list the steps required for Google Chrome, Firefox and Safari below.

Google Chrome

  1. Select “Settings” at the top right of your browser home page.
  2. Click on “Show advanced settings”.
  3. In the “Privacy” tab, select “Content settings”.
  4. These can be deactivated in the “Cookies” section.

Firefox

  1. On the browser start page, press the “Alt” key on your keyboard.
  2. Then select “Menu” and then “Options” in the toolbar.
  3. Select the “Privacy” tab.
  4. For “Firefox will create a history:”, select “according to user-defined settings”.
  5. Uncheck the box next to “Accept cookies”.

Safari

  1. Select “Settings” in the function list (gray gear wheel at the top right) and click on “Privacy”.
  2. Under “Accept cookies” you can now specify whether or when Safari should accept cookies from websites.

§ 5 Web analysis services & third-party software

We use the web analysis services and third-party software listed below. Cookies are used for this purpose, which enable your use of the website to be analyzed. The information generated in this way is transferred to the provider’s server and stored there.

You can prevent this by setting up your browser so that no cookies are stored. We have concluded a corresponding contract with the provider for order data processing.

Use of IP addresses on the legal basis of “legitimate interest”; in this case, pseudonymization is carried out: Your IP address is recorded, but immediately pseudonymized by deleting the last 8 bits. This means that only a rough localization is possible.

Our concern within the meaning of the GDPR (legitimate interest) is the improvement of our offer and our website. Since the privacy of our users is important to us, the user data is pseudonymized.

The user data is stored for a period of 26 months.

5.1 Google Analytics with headquarters in Mountain View, California, United States

We use Google Analytics (a Google web analysis service). Google Analytics uses the above-mentioned “cookies” to analyze website usage. Personal data may be processed and passed on (e.g. IP addresses), e.g. for personalized advertisements and content or ad and content measurement. You can find further information on use in Google’s privacy policy and terms of use.

The information generated about your use of the website is usually sent to a Google server in the USA and stored there. However, if IP anonymization is activated on this website, Google will truncate your IP address within EU member states or other signatory states to the Agreement on the European Economic Area. The full IP address is only sent to a US-American Google server to be shortened there in rare exceptional cases. Google does not merge the IP address transmitted by your browser with any other data collected by Google. You can deactivate cookies as described in the Cookies section; however, in this case you may not be able to use all the functions of this website to their full extent.

You can also prevent Google from collecting and processing data (relating to your use of the website) by installing the following browser plugin.

You can find further information on the security and data protection principles of Google Analytics here.

5.2 Meta Platforms Ireland Limited with registered office in Dublin, Ireland

Our website heatness.at uses the analytics service Meta-Pixel, which is offered and operated by the social network Meta Platforms Ireland Limited, Merrion Road, Dublin 4, Ireland. Meta-Pixel enables our website visitors to receive targeted advertising directly on Facebook (placement of ads). Through the use of cookies, users who have already shown an interest in our products receive suitable Facebook ads. You can deactivate cookies as described in the Cookies section. Further information about Meta Pixel and Meta’s data usage policy. If you are logged in to your Facebook account, you can change the settings for user-based advertising.

5.3 tawk.to Inc. with headquarters in Las Vegas, Nevada

We use the live chat plugin tawk.to on our website to enable our customers to have uncomplicated and direct contact with one of our qualified employees. tawk.to offers heatness® employees an external chat management platform. The chat is embedded in the source code of our website via a script. If you use this service, tawk.to saves your IP address so that we know immediately who we are dealing with and how we can best help you if you contact us again. If you use the option to have the chat history sent to you by e-mail, your e-mail address will be saved. Files that you upload via the plugin, like the chat history, are also stored temporarily in order to answer your query. Please note that we have no influence on how Tawk.to processes the data. Data to which we have access will be deleted as soon as the request has been completed.

For more information, please refer to the tawk.to Privacy Policy.

5.4 Google Maps with headquarters in Mountain View, California

Our website heatness.at uses Google Maps, an interactive service for viewing maps and creating routes. By using heatness.at, you agree that automatically collected data may be collected, processed and used by Google, one of its representatives or third-party providers. Further information can be found in the Google Maps privacy policy.

5.5 YouTube LLC, with its registered office in San Bruno, California, represented by Google Inc. with its registered office in Mountain View, California

We use the YouTube video service from Google to embed videos. As soon as you agree to our privacy policy, you consent to cookies being stored on your PC and your IP address being transmitted to YouTube when you access a website with integrated YouTube videos. YouTube also contacts Google’s Double Click service. We have no knowledge of whether and what data YouTube or Double Klick collects and how it is used. We provide information on the handling and the possibility of deactivating cookies in this privacy policy.

Further information can be found in Google’s privacy policy.

5.6 WooCommerce plugin from Automattic Inc. based in San Francisco, California

heatness.at uses the eCommerce plugin “WooCommerce”. In order to optimize your shopping experience in our online store, data is collected, processed and stored by the plugin when you use our website. This includes information such as recently viewed products, location, IP address and browser type. Data such as name, billing and delivery address, email address, telephone number, credit card and payment details and optional account information are also collected during the ordering process. We store this data in order to process the order. The data is deleted as soon as the respective contract has been fulfilled and there is no longer a legal obligation to store the data. Cookies are used to ensure the functionality of the shopping cart during your visit. You can deactivate cookies as described in the Cookies section; however, in this case you may not be able to use all the functions of this website to their full extent.

Further information can be found in the WooCommerce privacy policy.

5.7. iThemes Security Plugin from iThemes Media LLC based in Edmond, Oklahoma

We use the iThemes Security Plugin to prevent malicious activities and attacks on the website. The IP address and user ID are conditionally logged.

Further details can be found in the iThemes privacy policy.

The plugin uses “Sucuris SiteCheck” to protect heatness.at from malware and security vulnerabilities. We do not send any personal information to Sucuri. However, Sucuri may find personal information in public content (e.g. comments) during the scan. Security logs are kept for 60 days.

For more information, please see Sucuri ‘s privacy policy.

5.8 Trusted Shops Trustbadge / other widgets from Trusted Shops

Trusted Shops widgets are integrated on this website to display Trusted Shops services (e.g. seal of approval, collected reviews) and to offer Trusted Shops products to buyers after an order. This serves to safeguard our legitimate interests, which predominate in the context of a balancing of interests, in optimal marketing by enabling secure shopping in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR. The Trustbadge and the services advertised with it are an offer from Trusted Shops AG, Subbelrather Str. 15C, 50823 Cologne (“Trusted Shops”), with which we are jointly responsible under data protection law in accordance with Art. 26 GDPR. In the context of this data protection notice, we inform you below about the essential contents of the contract in accordance with Art. 26 para. 2 GDPR.

Within the scope of the joint responsibility existing between us and Trusted Shops, please contact Trusted Shops in case of data protection questions and to assert your rights using the contact options provided in the data protection information. Irrespective of this, you can always contact the controller of your choice. If necessary, your request will then be forwarded to the other controller for a response.

5.8.1 Data processing when integrating the Trustbadge/other widgets

The trust badge is provided by a US CDN provider (content delivery network). An appropriate level of data protection is ensured by standard data protection clauses and other contractual measures.

When you access the Trustbadge, the web server automatically saves a so-called server log file, which also contains your IP address, the date and time of access, the amount of data transferred and the requesting provider (access data) and documents the access. The IP address is anonymized immediately after collection so that the stored data cannot be assigned to your person. The anonymized data is used in particular for statistical purposes and for error analysis.

5.8.2 Data processing after order completion

After the order has been completed, the Trustbadge accesses the order information stored in your end device (order total, order number, product purchased if applicable) and e-mail address. This is necessary in order to be able to offer you the Trusted Shops services and, if necessary, to automatically secure your order; for this purpose, your e-mail address, which has been hashed using a cryptological one-way function, is transmitted to Trusted Shops. The legal basis is Art. 6 para. 1 sentence 1 lit. f GDPR.

This serves to check whether you are already registered for services with Trusted Shops and is therefore necessary for the fulfillment of our and Trusted Shops’ overriding legitimate interests in the provision of the buyer protection linked to the specific order and the transactional evaluation services in accordance with Art. 6 Para. 1 S. 1 lit. f GDPR. If this is the case, further processing will be carried out in accordance with the contractual agreement concluded between you and Trusted Shops. If you have not yet registered for the services, you will then be given the opportunity to do so for the first time. Further processing after registration is also based on the contractual agreement with Trusted Shops. If you do not register, all transmitted data will be automatically deleted by Trusted Shops and a personal reference is then no longer possible.

Trusted Shops uses service providers in the areas of hosting, monitoring and logging. The legal basis is Art. 6 para. 1 lit. f GDPR for the purpose of ensuring trouble-free operation. Processing may take place in third countries (USA and Israel). An adequate level of data protection is ensured in the USA by standard data protection clauses and other contractual measures and in Israel by an adequacy decision. Further information can be found here.

§ 6 Your rights

6.1 Right to information

On request, we will be happy to inform you which of your personal data we have stored, where it comes from and what purpose the processing serves.

6.2 Right to object

In accordance with Art. 21 GDPR, you have the right to object to the future processing of your data at any time, in particular for the purpose of direct marketing.

6.3 Right to withdraw consent (e.g. sending newsletters)

If you have already given us your consent to the use of personal data, e.g. consent to receive our newsletter, you have the option to withdraw this at any time. If you would like to unsubscribe from the heatness® newsletter, please open a newsletter you have already received, scroll to the bottom of the email and click on the “Unsubscribe newsletter” link. Alternatively, you can send an e-mail to office@heatness.at.

6.4 Further rights

As a user, you have the right to data portability and to restrict the processing of your personal data. Furthermore, stored information can be corrected or deleted on request. You have the right to object to future processing. If you believe that the processing of your personal data violates data protection law, you have the right to lodge a complaint, without prejudice to any other administrative or judicial remedy. Such a complaint may be lodged with a supervisory authority in the Member State of your place of work, your place of residence or the place of the alleged infringement.

6.5 Complaints regarding personal data

If you have any complaints regarding your personal data, please contact us so that we can find a solution together. You also have the option of contacting the Austrian Data Protection Authority.

Contact heatness® GmbH

heatness® South Africa
13 Eagle Avenue
7806 Cape Town, South Africa
Tel: +27 60 484 6885
info@heatness.co.za

heatness® GmbH
Rudolf Hausner Gasse 3
1220 Vienna
Phone: +43 (0) 1 / 890 36 28
E-mail: office@heatness.at

Austrian Data Protection Authority

Hohenstaufengasse 3
1010 Vienna
Phone: +43 1 531 15-202525
Fax: +43 1 531 15-202690
E-mail: dsb@dsb.gv.at