Privacy policy

1. Controller

The controller responsible for data processing within the meaning of the General Data Protection Regulation (GDPR) is:

Philipp Posko
St. Antoniusstr. 54
41470 Neuss
Germany

Phone: +49 (0)173 2638775
Email: [3D-Design@gamesartbyphilipp.com](mailto:3D-Design@gamesartbyphilipp.com)

2. General Principles of Data Processing

Personal data means any information relating to an identified or identifiable natural person.

We process personal data in accordance with the GDPR and applicable German data protection laws.

Processing takes place only where it is necessary for the operation of this website, the performance of a contract, compliance with legal obligations or where you have given your consent.

3. Categories of Recipients

Depending on the purpose of processing, personal data may be shared with the following categories of recipients:

IT and hosting service providers (in particular Shopify)
Payment service providers
Invoice and document service providers

Where service providers process data on our behalf, this is carried out on the basis of a data processing agreement pursuant to Art. 28 GDPR.

4. Hosting and Technical Infrastructure

Shopify

This website is operated using Shopify. The provider is:

Shopify International Limited
Victoria Building
1–2 Haddington Road
Dublin 4, D04 XN32
Ireland

When you visit this website, technical data such as IP address, browser information, device information and access time may be processed.

The legal basis for technically necessary processing is Art. 6(1)(f) GDPR. Our legitimate interest lies in the secure and stable operation of our online store.

Where consent is required for certain technologies, processing is based on Art. 6(1)(a) GDPR in conjunction with § 25(1) TDDDG. Consent may be revoked at any time with effect for the future.

We have concluded a data processing agreement with Shopify in accordance with Art. 28 GDPR.

Further information on Shopify’s data processing is available at:
https://www.shopify.de/legal/datenschutz

5. International Data Transfers

In the context of using Shopify and integrated payment providers, personal data may be transferred to countries outside the European Union.

Such transfers take place only on the basis of appropriate safeguards in accordance with Art. 44 et seq. GDPR, in particular standard contractual clauses or other legally recognised transfer mechanisms.

6. Cookies and Consent Management

This website uses cookies.

Technically necessary cookies are required for essential functions such as shopping cart management, login functions and security features. The legal basis for these cookies is Art. 6(1)(f) GDPR.

Non-essential cookies are only set after you have given your consent. The legal basis is Art. 6(1)(a) GDPR in conjunction with § 25(1) TDDDG.

This website uses Shopify’s integrated consent management system. You can accept or reject non-essential cookies and revoke your consent at any time.

7. Server Log Files

When accessing this website, the following data may be collected automatically:

Browser type and version
Operating system used
Referrer URL
Hostname of the accessing computer
Time of server request
IP address

The processing is based on Art. 6(1)(f) GDPR.

8. Contact Form

If you contact us via the contact form provided on this website, the data you enter such as name, email address and message content will be processed for the purpose of handling your inquiry.

The legal basis for this processing is:

Art. 6(1)(b) GDPR if your request relates to the initiation or performance of a contract
Art. 6(1)(f) GDPR. Our legitimate interest lies in responding to inquiries addressed to us

9. Customer Account and Contract Processing

If you create a customer account, the data provided during registration are processed for the purpose of managing your account and facilitating future purchases.

For the conclusion and performance of contracts, we process personal data such as name, address, email address and payment information.

The legal basis is Art. 6(1)(b) GDPR.

The provision of personal data is necessary for the conclusion of a contract. Without this data, no contractual relationship can be established.

10. Payment Services

Payment data are processed for the purpose of handling payments in accordance with Art. 6(1)(b) GDPR.

PayPal

PayPal (Europe) S.à.r.l. et Cie, S.C.A.
22–24 Boulevard Royal
L-2449 Luxembourg

Stripe

Stripe Payments Europe, Ltd
1 Grand Canal Street Lower
Grand Canal Dock
Dublin, Ireland

11. Invoice Generation and Order Documents

We use the app "Order Printer Pro" to automatically generate invoices and order-related PDF documents.

The provider of this service is:

FORSBERG+two ApS
Tranegårdsvej 74
2900 Hellerup
Denmark

For the purpose of invoice creation, the app processes customer data such as name, billing address, order details, pricing information, tax amounts and invoice numbers.

The legal basis for this processing is Art. 6(1)(b) GDPR as the processing is necessary for the performance of the contract. Processing is also carried out pursuant to Art. 6(1)(c) GDPR to comply with statutory invoicing obligations under German tax law.

Invoices and related accounting documents are stored in accordance with statutory retention obligations under German commercial and tax law.

Further information on the provider’s data protection practices can be found at:
https://www.forsbergplustwo.com/legal/privacy-policy