Privacy Policy

Effective Date: September 28, 2020

General

Vanilo UG ("Vanilo”) takes privacy matters very seriously. This Privacy Policy (“Privacy Policy”) details how Vanilo receives, collects and uses personal information in connection with our website vanilo.cloud ("Website") and the Vanilo Cloud services and products. Website and the Vanilo Cloud services and products offered to you through Website and any part thereof are collectively referred to in these terms as the "Service".

This Privacy Policy is intended to inform you, as a visitor of the Website and the users of Vanilo Cloud services, about the nature, scope and purpose of the collection and processing of personal data.

Name of the Register

Vanilo Cloud customer and user register.

Data Controller

Personal data is processed in the operation of this Website and the use of services offered through this website (“Website”) by Vanilo UG (“Vanilo” or “we”).

The terms used in this Privacy Policy (e.g. “personal data”, “processing”, “pseudonymization” or “anonymization”) are in line with the definitions included in the General Data Protection Regulation (“GDPR”).

The controller of the personal data is the Website operator:

Vanilo UG
Käthe-Niederkirchner Straße 9.
10407 Berlin
Germany

Data Protection Officer

You can reach our data protection officer at our postal address with the addition: “To the data protection officer”, as well as by e-mail at [email protected].

Information We Collect

The type, scope and purpose of the processing of personal data depends on which Vanilo Cloud services are used. In particular when you use our E-commerce solutions, we will process specific personal data required for the service.

Log Data

When you visit our website, our servers may automatically log the standard data provided by your web browser. It may include your computer’s Internet Protocol (IP) address, your browser type and version, the pages you visit, the time and date of your visit, the time spent on each page, and other details.

Device data

We may also collect data about the device you’re using to access our website. This data may include the device type, operating system, unique device identifiers, device settings, and geo-location data. What we collect can depend on the individual settings of your device and software. We recommend checking the policies of your device manufacturer or software provider to learn what information they make available to us.

Personal information

We may ask for personal information, such as your:

  • Name
  • Email
  • Phone/mobile number
  • Home/Mailing address
  • Work address
  • Payment information

Collection And Use Of Information

We may collect, hold, use and disclose information for the following purposes and personal information will not be further processed in a manner that is incompatible with these purposes:

  • to enable you to customize or personalize your experience of our website;
  • to enable you to access and use our website, associated applications and associated social media platforms;
  • to contact and communicate with you;
  • for internal record keeping and administrative purposes;
  • for analytics, market research and business development, including to operate and improve our website, associated applications and associated social media platforms;
  • for advertising and marketing, including to send you promotional information about our products and services and information about third parties that we consider may be of interest to you; and
  • to comply with our legal obligations and resolve any disputes that we may have.

Disclosure To Third Parties

We may disclose personal information to:

  • third party service providers for the purpose of enabling them to provide their services, including (without limitation) IT service providers, data storage, hosting and server providers, ad networks, analytics, error loggers, debt collectors, maintenance or problem-solving providers, marketing or advertising providers, professional advisors and payment systems operators;
  • our employees, contractors and/or related entities;
  • credit reporting agencies, courts, tribunals and regulatory authorities, in the event you fail to pay for goods or services we have provided to you;
  • courts, tribunals, regulatory authorities and law enforcement officers, as required by law, in connection with any actual or prospective legal proceedings, or in order to establish, exercise or defend our legal rights; and
  • third parties to collect and process data.

Data Processors

Adobe Web Fonts

We use web fonts for the presentation of fonts. These web fonts are provided by Adobe Fonts (aka. Typekit), a service of Adobe Systems Software Ireland Limited (Adobe Ireland) (4-6 Riverwalk, City West Business Campus, Saggart, Dublin 24, Ireland).

In order to do this, your browser must connect to the Adobe servers. This will notify Adobe that the Website was accessed via your IP address. The use of Adobe Fonts is used as per our interest of a uniform and attractive display of our online services. The use of Adobe Fonts is in the interest of a uniform and attractive presentation of our online services.

If your browser does not support web fonts, a default font will be used instead. The legal basis for the processing is article 6.1, paragraph (f), GDPR (legitimate interest).

You can find more information regarding Adobe Fonts on their website and in their respective Privacy Policy.

International Transfers Of Personal Information

The personal information we collect is stored and processed in Germany and Ireland, or where we or our partners, affiliates and third-party providers maintain facilities. By providing us with your personal information, you consent to the disclosure to these overseas third parties.

We will ensure that any transfer of personal information from countries in the European Economic Area (EEA) to countries outside the EEA will be protected by appropriate safeguards, for example by using standard data protection clauses approved by the European Commission, or the use of binding corporate rules or other legally accepted means.

Where we transfer personal information from a non-EEA country to another country, you acknowledge that third parties in other jurisdictions may not be subject to similar data protection laws to the ones in our jurisdiction. There are risks if any such third party engages in any act or practice that would contravene the data privacy laws in our jurisdiction and this might mean that you will not be able to seek redress under our jurisdiction’s privacy laws.

Your Rights And Controlling Your Personal Information

Choice and consent: By providing personal information to us, you consent to us collecting, holding, using and disclosing your personal information in accordance with this privacy policy. If you are under 16 years of age, you must have, and warrant to the extent permitted by law to us, that you have your parent or legal guardian’s permission to access and use the website and they (your parents or guardian) have consented to you providing us with your personal information. You do not have to provide personal information to us, however, if you do not, it may affect your use of this website or the products and/or services offered on or through it.

Information from third parties: If we receive personal information about you from a third party, we will protect it as set out in this privacy policy. If you are a third party providing personal information about somebody else, you represent and warrant that you have such person’s consent to provide the personal information to us.

Restrict: You may choose to restrict the collection or use of your personal information. If you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by contacting us using the details below. If you ask us to restrict or limit how we process your personal information, we will let you know how the restriction affects your use of our website or products and services.

Access and data portability: You may request details of the personal information that we hold about you. You may request a copy of the personal information we hold about you. Where possible, we will provide this information in CSV format or other easily readable machine format. You may request that we erase the personal information we hold about you at any time. You may also request that we transfer this personal information to another third party.

Correction: If you believe that any information we hold about you is inaccurate, out of date, incomplete, irrelevant or misleading, please contact us using the details below. We will take reasonable steps to correct any information found to be inaccurate, incomplete, misleading or out of date.

Notification of data breaches: We will comply laws applicable to us in respect of any data breach.

Complaints: If you believe that we have breached a relevant data protection law and wish to make a complaint, please contact us using the details below and provide us with full details of the alleged breach. We will promptly investigate your complaint and respond to you, in writing, setting out the outcome of our investigation and the steps we will take to deal with your complaint. You also have the right to contact a regulatory body or data protection authority in relation to your complaint.

Unsubscribe: To unsubscribe from our e-mail database or opt-out of communications (including marketing communications), please contact us using the details below or opt-out using the opt-out facilities provided in the communication.

Cookies

We use “cookies” to collect information about you and your activity across our site. A cookie is a small piece of data that our website stores on your computer, and accesses each time you visit, so we can understand how you use our site. This helps us serve you content based on preferences you have specified. Please refer to our Cookie Policy for more information.

Business Transfers

If we or our assets are acquired, or in the unlikely event that we go out of business or enter bankruptcy, we would include data among the assets transferred to any parties who acquire us. You acknowledge that such transfers may occur, and that any parties who acquire us may continue to use your personal information according to this policy.

Limits Of Our Policy

Our website may link to external sites that are not operated by us. Please be aware that we have no control over the content and policies of those sites, and cannot accept responsibility or liability for their respective privacy practices.

Changes To This Policy

At our discretion, we may change our privacy policy to reflect current acceptable practices. We will take reasonable steps to let users know about changes via our website. Your continued use of this site after any changes to this policy will be regarded as acceptance of our practices around privacy and personal information.

If we make a significant change to this privacy policy, for example changing a lawful basis on which we process your personal information, we will ask you to re-consent to the amended privacy policy.

This policy is effective as of September 28, 2020.