ONLINE SHOP 
DATA PROTECTION DECLARATION

This privacy statement was last updated on 1. June 2022 and applies to citizens and legal permanent residents of the European Economic Area and Switzerland.

In this privacy statement, we explain what we do with the data we obtain about you via https://ameyamed.com/en/. We recommend you carefully read this statement. In our processing we comply with the requirements of privacy legislation. That means, among other things, that:

  • we clearly state the purposes for which we process personal data. We do this by means of this privacy statement;
  • we aim to limit our collection of personal data to only the personal data required for legitimate purposes;
  • we first request your explicit consent to process your personal data in cases requiring your consent;
  • we take appropriate security measures to protect your personal data and also require this from parties that process personal data on our behalf;
  • we respect your right to access your personal data or have it corrected or deleted, at your request.

If you have any questions, or want to know exactly what data we keep of you, please contact us.

1. Purpose, data and retention period

We may collect or receive personal information for a number of purposes connected with our business operations which may include the following: (click to expand)

1.1 Contact – Through phone, mail, email and/or webforms

For this purpose we use the following data:

  • A first and last name
  • A home or other physical address, including street name and name of a city or town
  • An email address
  • A telephone number

The basis on which we may process these data is:

For compliance with a legal or regulatory obligation.

Retention period

We retain this data upon termination of the service for the following number of months: 24 Monate

1.2 Payments

For this purpose we use the following data:

  • A first and last name
  • A home or other physical address, including street name and name of a city or town
  • An email address
  • Financial information such as bank account number or credit card number
  • Account name or alias
  • IP address
  • Geolocation data
  • A telephone number

The basis on which we may process these data is:

For compliance with a legal or regulatory obligation.

Retention period

We retain this data upon termination of the service for the following number of months: 24 Monate

1.3 Registering an account

For this purpose we use the following data:

  • A first and last name
  • A home or other physical address, including street name and name of a city or town
  • An email address
  • Date of birth
  • Account name or alias
  • Sex
  • IP address
  • Geolocation data
  • Internet activity information, including, but not limited to, browsing history, search history, and information regarding a consumer's interaction with an Internet Web site, application, or advertisement
  • A telephone number

The basis on which we may process these data is:

It is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller

Retention period

We retain this data upon termination of the service for the following number of months: 24 Monate

1.4 Newsletters

For this purpose we use the following data:

  • A first and last name
  • A home or other physical address, including street name and name of a city or town
  • An email address

The basis on which we may process these data is:

It is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, and that interest outweighs the interest of the person concerned.

Retention period

We retain this data upon termination of the service for the following number of months: 24 Monate

1.5 To support services or products that a customer wants to buy or has purchased

For this purpose we use the following data:

  • A first and last name
  • A home or other physical address, including street name and name of a city or town
  • An email address

The basis on which we may process these data is:

It is necessary for the execution of a contract or preliminary procedures related to a contract to which the data subject is a party.

Retention period

We retain this data upon termination of the service for the following number of months: 24 Monate

1.6 Compiling and analyzing statistics for website improvement.

For this purpose we use the following data:

  • IP address
  • Geolocation data
  • Internet activity information, including, but not limited to, browsing history, search history, and information regarding a consumer's interaction with an Internet Web site, application, or advertisement

The basis on which we may process these data is:

It is necessary for the execution of a contract or preliminary procedures related to a contract to which the data subject is a party.

Retention period

We retain this data upon termination of the service for the following number of months: 24 Monate

2. Sharing with other parties

We only share or disclose this data to processors for the following purposes:

Name: sevDesk GmbH
Country: Deutschland
Purpose: Buchhaltung
Name: GLS Logistics
Country: Österreich
Purpose: Paketversand
Name: Sendcloud GmbH
Country: Deutschland
Purpose: Paetversand
Name: Zweischneider GmbH & Co. KG
Country: Deutschland
Purpose: Rechnungserstellung
Name: Hetzer Online GmbH
Country: Deutschland
Purpose: Technisches Serverhosting
Name: effet webservice Robert Breithuber
Country: Österreich
Purpose: Serverbetreuung

3. Cookies

Our website uses cookies. For more information about cookies, please refer to our Cookie Policy

We have concluded a data Processing Agreement with Google.

Google may not use the data for any other Google services.

The inclusion of full IP addresses is blocked by us.

4. Security

We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorized access to personal data. This ensures that only the necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.

5. Third-party websites

This privacy statement does not apply to third-party websites connected by links on our website. We cannot guarantee that these third parties handle your personal data in a reliable or secure manner. We recommend you read the privacy statements of these websites prior to making use of these websites.

6. Amendments to this privacy statement

We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.

7. Accessing and modifying your data

If you have any questions or want to know which personal data we have about you, please contact us. You can contact us by using the information below. You have the following rights:

  • You have the right to know why your personal data is needed, what will happen to it, and how long it will be retained for.
  • Right of access: You have the right to access your personal data that is known to us.
  • Right to rectification: you have the right to supplement, correct, have deleted or blocked your personal data whenever you wish.
  • If you give us your consent to process your data, you have the right to revoke that consent and to have your personal data deleted.
  • Right to transfer your data: you have the right to request all your personal data from the controller and transfer it in its entirety to another controller.
  • Right to object: you may object to the processing of your data. We comply with this, unless there are justified grounds for processing.

Please make sure to always clearly state who you are, so that we can be certain that we do not modify or delete any data of the wrong person.

8. Submitting a complaint

If you are not satisfied with the way in which we handle (a complaint about) the processing of your personal data, you have the right to submit a complaint to the Data Protection Authority.

9. Contact details

Ameya
Gregor Mendel Straße 46, A-1190 Vienna, Austria
Austria
Website: https://ameyamed.com/en/
Email: moc.demayema@ofni
Phone number: +43 1 523 3000

Annex

What we collect and store

While you visit our site, we’ll track:

  • Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed
  • Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
  • Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order!

We’ll also use cookies to keep track of cart contents while you’re browsing our site.

When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like username and password. We’ll use this information for purposes, such as, to:

  • Send you information about your account and order
  • Respond to your requests, including refunds and complaints
  • Process payments and prevent fraud
  • Set up your account for our store
  • Comply with any legal obligations we have, such as calculating taxes
  • Improve our store offerings
  • Send you marketing messages, if you choose to receive them

If you create an account, we will store your name, address, email and phone number, which will be used to populate the checkout for future orders.

We generally keep information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to keep it any longer. For example, we store order information for the duration of the retention period required by law for tax and accounting purposes. This includes your name, your email address and your billing and delivery addresses.

We will also store comments or reviews, if you choose to leave them.

Who on our team has access

Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:

  • Order information like what was purchased, when it was purchased and where it should be sent, and
  • Customer information like your name, email address, and billing and shipping information.

Our team members have access to this information to help fulfill orders, process refunds and support you.

What we share with others

We share information with third parties who help us provide our orders and store services to you.

Payment processing & billing

PayPal

We accept payments through PayPal. ( PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg) When processing payments, some of your data will be passed to PayPal, including information required to process or support the payment, such as the purchase total and billing information.

Please see the PayPal Privacy Policy for more details.

Stripe

We accept following payments through Stripe: Visa, Mastercard, Diners Club, American Express, EPS Transaction, Sofortüberweisung, Apple Pay.  The operator of the service is: Stripe, Inc., 510 Townsend Street, San Francisco, CA 94103, USA. Contact: . Please also see Stripe`s Privacy Policy for more details: https://stripe.com/privacy-center/legal

SevDesk

We use SevDesk for billing and accounting purposes. The operator of the SevDesk service is: sevDesk GmbH, Hauptstraße 115, 77652 Offenburg, Germany. Company names, billing addresses, delivery addresses and article data are transferred to debitoor and saved there. We have concluded a data processing agreement with SevDesk. Further information on SevDesk and its data protection declaration can be found at: https://sevdesk.at/sicherheit-datenschutz/

WooRechnung

WooRechnung enables data transfer between WooCommerce and the “SevDesk” application.  WooRechnung shares the following data with SevDesk: company names, billing addresses, delivery addresses and article data. This data is transferred to SevDesk and saved there. The operator of the WooRechnung service is: Zweischneider GmbH & Co. KG, Bahnhofstrasse 15–17, 65185 Wiesbaden. Contact: . Please see WooRechnung`s Privacy Policy for more details: https://woorechnung.com/privacy

Delivery partners

SevDesk

We use SevDesk for billing and accounting purposes. The operator of the SevDesk service is: sevdesk GmbH, Hauptstraße 115, 77652 Offenburg, Germany. Company names, billing addresses, delivery addresses and article data are transferred to sevdesk and saved there. We have concluded a data processing agreement with sevdesk. Further information on sevdesk and data protection declarationcan be found at: https://sevdesk.at/sicherheit-datenschutz/.

WooRechnung

WooRechnung enables data transfer between WooCommerce and the “debitoor” application.  WooRechnung shares the following data with Debitoor: company names, billing addresses, delivery addresses and article data. This data is transferred to debitoor and saved there. The operator of the WooRechnung service is: Zweischneider GmbH & Co. KG, Bahnhofstrasse 15–17, 65185 Wiesbaden. Contact: . Please see WooRechnung`s Privacy Policy for more details: https://woorechnung.com/privacy

YouTube

Our website may contain plugins from YouTube operated by Google. The operator of the website is YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.

If you visit one of our pages with a YouTube plug-in, a connection to the YouTube servers will be established. Here the YouTube server is informed which of our pages you have visited.

If you are logged into your YouTube account, you can link your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

YouTube is used to make our website appealing. This is a legitimate interest within the meaning of Art. 6 (1) (f) GDPR.

You can find more information on handling user data in YouTube’s data protection declaration at https://www.google.de/intl/de/policies/privacy

Vimeo

Our website may contain functions of the Vimeo video portal. This service is provided by Vimeo Inc., 555 West 18th Street, New York, 10011 New York, USA.

If you visit one of our pages with a Vimeo plug-in, a connection to the Vimeo servers will be established. Here the Vimeo server is informed which of our pages you have visited. Vimeo also receives your IP address. This also applies if you are not logged into Vimeo or do not have a Vimeo account when you visit our plug-in. The information is transmitted to a Vimeo server in the USA and stored there.

If you are logged into your Vimeo account, you can use Vimeo to link your surfing behavior directly to your personal profile. You can prevent this by logging out of your Vimeo account.

You can find more information on handling user data in the Vimeo data protection provisions at https://vimeo.com/privacy.

Google web fonts

This page uses web fonts provided by Google. When you open a page, your browser loads the necessary web fonts into your browser cache to display texts and fonts correctly.

For this purpose, your browser must establish a direct connection with the Google servers. This makes Google aware that our website has been accessed via your IP address. The use of Google web fonts is in the interest of a uniform and appealing presentation of our website. This is a legitimate interest within the meaning of Art. 6 (1) (f) GDPR.

If your browser does not support web fonts, a standard font will be used by your computer.

Further information on the handling of user data can be found at https://developers.google.com/fonts/faq and in Google’s data protection provisions at https://www.google.com/policies/privacy/.

Adobe web fonts

This page uses web fonts provided by Adobe. When you open a page, your browser loads the necessary web fonts into your browser cache to display texts and fonts correctly.

For this purpose, your browser must establish a direct connection with the Adobe servers. Adobe becomes aware that our website was accessed via your IP address. Adobe web fonts are used in the interest of a uniform and appealing presentation of our website. This is a legitimate interest within the meaning of Art. 6 (1) (f) GDPR.

If your browser does not support web fonts, a standard font will be used by your computer.

Further information on handling user data can be found at: https://www.adobe.com/il_en/privacy/policies/adobe-fonts.html