Privacy Policy for Denti-Shop.com
Last updated: [05,08,2025]
Welcome to Denti-Shop.com. Protecting your privacy and safeguarding your personal data are top priorities for us. Below, you’ll find a clear explanation of how we collect, process, share, and protect the information you entrust to us when using our website.
1. Who We Are
Controller
Novi Dental Produkte GmbH
Königsallee 19, 40212 Düsseldorf, Germany
Telephone: +49 211 89 03 684
Email: info@denti-shop.com
Data Protection Officer
Novi Dental Produkte GmbH
Königsallee 19, 40212 Düsseldorf, Germany
Telephone: +49 211 89 03 684
Email: info@denti-shop.com
2. What Data We Collect
| Category | Examples | Purpose |
|---|---|---|
| Identity Data | Name, date of birth | Contract formation & performance |
| Contact Data | Postal address, email, phone number | Order processing, support, marketing |
| Transaction Data | Order details, payment information | Invoicing, delivery, fraud prevention |
| Technical Data | IP address, browser type, device data | Site security, analytics, troubleshooting |
| Usage Data | Pages viewed, clicks, session length | Service improvement, personalization |
| Marketing Data | Newsletter subscription status | Promotional communications (with consent) |
3. How and Why We Process Your Data
| Purpose | Data Used | Legal Basis (GDPR) | Recipients |
|---|---|---|---|
| Order fulfilment | Identity, contact, transaction data | Art. 6 (1)(b) – Contract | Shipping partners, payment providers, tax advisors |
| Customer inquiries | Contact data, message content | Art. 6 (1)(f) – Legitimate interests (customer service) | — |
| Marketing communications (newsletter) | Contact & marketing data | Art. 6 (1)(a) – Consent | Email platform provider (minimal data only) |
| Creditworthiness checks | Identity & address data | Art. 6 (1)(f) – Legitimate interests (risk management) | Credit agencies |
| Website functionality (cookies, sessions) | Technical & usage data | Art. 6 (1)(f) – Legitimate interests (UX optimization) | — |
| Analytics (Google Analytics) | Pseudonymized usage data | Art. 6 (1)(f) – Legitimate interests (service improvement) | Google LLC |
| Embedded media (YouTube) | Technical & usage data when video plays | Art. 6 (1)(f) – Legitimate interests (content delivery) | Google LLC |
| Legal compliance & security | Technical & log data | Art. 6 (1)(c) – Legal obligation; Art. 6 (1)(f) – Security | Authorities (if legally required) |
4. Cookies & Similar Technologies
Session cookies keep you logged in and remember your preferences. They expire automatically (up to 6 months) or can be deleted manually at any time.
Analytics cookies by Google Analytics (with IP anonymization) help us understand site usage. You can opt out at any time via the Google Analytics Opt-out Browser Add-on.
Refusing cookies may limit certain features.
5. Log Files
We automatically record server logs—including IP address, timestamp, requested URL, and user agent—for up to 14 days. This information helps us analyse traffic patterns, improve security, and investigate incidents. We do not share log files unless legally required.
6. Third-Party Services
PayPal
If you select PayPal as your payment method, transaction data (e.g., payment amount, invoice number) are shared with PayPal (Europe) S.à r.l. et Cie, S.C.A. For details, see PayPal’s privacy policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full.Google Analytics
We use Google’s “Universal Analytics” in anonymized mode. Learn more about data handling at https://policies.google.com. Data retention is set to 14 months.YouTube
Embedded videos use “Enhanced Privacy Mode.” Only when you click “Play” will YouTube cookies be set and minimal data (IP, timestamp, page URL) be transmitted to Google LLC. If you’re logged in to YouTube, that activity may be linked to your account.
7. Sanctions, Export Controls & Credit Checks
Sanctions checks: We screen names against EU anti-terror lists (Regulations EC 2580/2001, 881/2002, 753/2011). Matches prevent contract formation; data are retained one year.
Export controls: For deliveries outside the EU, we verify compliance with the German Foreign Trade and Payments Act; customs declarations may be made.
Credit checks: If you request account purchase or financing, we may submit your name and address to credit agencies; adverse findings can affect your contract terms or lead to refusal.
8. Data Sharing & International Transfers
We never sell your personal data.
We share only what’s necessary with our service providers (logistics, IT, marketing platforms, tax advisors).
Transfers outside the EU/EEA (e.g., to the U.S.) occur only under appropriate safeguards (e.g., Standard Contractual Clauses, Privacy Shield frameworks where applicable).
9. Data Retention
We retain personal data for as long as needed to fulfil contractual or legal obligations (e.g., tax and commercial retention periods), plus any additional period required to defend legal claims.
10. Your Rights
Under the GDPR, you have the right to:
Access – Request a copy of your personal data (Art. 15).
Rectification – Correct inaccurate or incomplete data (Art. 16).
Erasure – “Right to be forgotten” where no legal basis prevents deletion (Art. 17).
Restriction of processing – Limit how we use your data (Art. 18).
Data portability – Receive your data in a structured, machine-readable format (Art. 20).
Object – Stop any processing based on legitimate interests (Art. 21).
To exercise these rights, please email info@denti-shop.com. You also have the right to lodge a complaint with your local data protection authority.
11. Changes to This Privacy Policy
We may update this notice to reflect legal changes or operational updates. The “Last updated” date at the top indicates when we made any revisions. We encourage you to review this page periodically.
If you have questions about our privacy practices, please contact us at Info@denti-shop.com or via the address above.