Cookie Policy


1. Cookie Settings

You can reject any cookie category listed in the cookie settings, except for cookies that are technically necessary. To do this, click on the "Cookie Settings" button.




2. Cookie Overview

Like many other websites, we also use so-called "cookies". These can be information about you, your settings, or your device. Mostly, the information is used to ensure that the website operates as expected. You are usually not directly identified by this information.


You can delete individual cookies or the entire cookie inventory. In addition, you will receive information and instructions on how to delete these cookies or block their storage in advance. Depending on the provider of your browser, you can find the necessary information under the following links:




3. Third Country Transfer

We also process data in countries outside the European Economic Area in so-called third countries or transfer data to recipients in these third countries. Please note that some services we use may transfer data outside the European Union and the European Economic Area and to a country that does not provide an adequate level of data protection. This includes the United States. As a result, there is a risk that your data may be processed by U.S. authorities for control and monitoring purposes, without you possibly having any legal remedies. Please also note that with respect to some of these third countries, there is currently no adequacy decision by the EU Commission that these third countries generally provide an adequate level of data protection. 


Below you will find a list of the services used that may transfer data to third countries. This may be the case for various purposes, for example, for storage or processing.


  • Google Tag Manager
  • Google Analytics
  • Microsoft Advertising
  • Google Ads
  • Facebook Pixel
  • Pinterest tag
  • Vimeo
  • Criteo
  • Awin


You can revoke your consent at any time with effect for the future. To do so, deactivate the corresponding checkbox in the cookie settings. We have agreed standard contractual clauses with the relevant providers.

4. Cookie Details

4.1 Technically Necessary Cookies


Purpose and legal basis

We use cookies to make our website more user-friendly. Some elements of our website require the requesting browser to be identifiable even after a page change.

The following data is stored and transmitted in the cookies:

  • Language settings
  • Approval status (Optanon)
  • Selected customer type
  • Selected payment method

The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be provided without the use of cookies. For these, it must be possible to recognise the browser even after a page change.
The processing is carried out in accordance with Art. 6 (1) f) GDPR on the basis of our legitimate interest in a user-friendly design of our website.

The recipients of the data may be technical service providers who act as contract processors for the operation and maintenance of our website.


Storage period
For details of how long cookies are stored and the technologies used with these tracking tools, please see the information above about the cookies we use.

Provision prescribed or required
The provision of the aforementioned personal data is neither legally nor contractually required. However, without this data the service and functionality of our website cannot be guaranteed. In addition, individual services and services in general may not be available or may be limited.

Objection
Please read the information about your right to object according to Art. 21 GDPR.

a) Google Tag Manager

Google Tag Manager (Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland) is a tag management system that allows tracking codes and associated code fragments to be placed, updated, and managed on the website. Through the Google Tag Manager tool, through which the tags are implemented, cookies are set and loaded via the googletagmanager.com domain. No personal data is collected itself. The Google Tag Manager only triggers other tags, which in turn may collect data. The Google Tag Manager does not access this data. The service itself does not collect any personal data.

  1. Data protection, privacy information and unsubscribe option
  2. The data processed are:
    • Google Tag Manager HTTP data

      This is log data that is technically generated when using the Google Tag Manager tool used on the website via the Hypertext Transfer Protocol Secure (HTTPS). This includes IP address, type and version of your internet browser, the operating system used, the page accessed, the previously visited page (referrer URL) and the date and time of access.
  3. The legal basis for the processing of the data is Art. 6 (1) a) GDPR (consent) in conjunction with Art. 25 of the Act on Data Protection and Privacy of Telecommunications and Telemedia Services (TTDSG), for the reliable control of cookies.
  4. The data is automatically provided by the user's browser.
  5. The recipients of the data are Google Ireland Limited (Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland) within the scope of order processing. Google Ireland Limited uses Google LLC in the USA (1600 Amphitheatre Parkway, Mountain View, CA 94043, United States of America) as a service provider.
  6. An automated decision-making process takes place regarding the "Technically Necessary Cookies" when you use the website.


b) OneTrust

OneTrust (OneTrust Technology Limited, 82 St Johan St, Farringdon, London, EC1M 4JN, United Kingdom) is a cookie consent management tool and is used to manage the consent management of our website visitors. This enables us to use our user data in a GDPR compliant manner. In addition to consent, it is also important to be able to manage possible revocations of consent and objections to the use of cookies.

  1. Data protection and privacy information
    https://www.onetrust.com/privacy-notice/
  2. The data processed are:
    • OneTrust HTTP data
      This is log data that is technically generated when using the cookie consent management tool OneTrust on the website via the Hypertext Transfer Protocol Secure (HTTPS). This includes the IP address, type and version of your Internet browser, the operating system used, the page accessed, the previously visited page (referrer URL) and the date and time of access.
    • OneTrust consent data
      This is log data that registers and stores the decision of you to individual cookie groups. The data we collect through OneTrust does not allow us to directly identify you personally (i.e., by your civil name). It also does not provide any other personal information about the identity of the user.
  3. The legal basis for the processing of the data is Art. 6 (1) a) GDPR (consent) in conjunction with Art. 25 of the Act on Data Protection and Privacy of Telecommunications and Telemedia Services (TTDSG), for the reliable control of cookies.
  4. The data is automatically provided by the user's browser.
  5. The recipients of the data are OneTrust Technology Limited (82 St Johan St, Farringdon, London, EC1M 4JN, United Kingdom) as part of the commissioned processing.
  6. An automated decision-making process takes place regarding the "Technically Necessary Cookies" when you use the website.

4.2 Functional Cookies


a) Google Analytics

Google Analytics (Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland) is a web analytics service and is used to store information about the user activities of website visitors, in particular the number of visitors, duration of visits, sales transactions and sub-pages visited. The information generated by the cookie about your use of the website will be transmitted to and stored by Google on servers in the United States. However, due to the activation of IP anonymization on these web pages, your IP address will be truncated beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. Google Analytics serves the purpose of analyzing the use of the website and to be able to continuously improve individual functions and offers as well as the user experience. Through the statistical evaluation of user behavior, it is possible to continuously improve the offer and make it more interesting for you as a user.


  1. Data protection, privacy information and unsubscribe option
  2. The data processed are:
    • Google Analytics HTTP data
      This is log data that is generated for technical reasons when using the Google Analytics web analysis tool used on the website via the Hypertext Transfer Protocol Secure (HTTPS). This includes IP address, type and version of your internet browser, the operating system used, the page accessed, the previously visited page (referrer URL) and the date and time of access.
    • Google Analytics end device data
      This is data generated by Google Analytics and assigned to your terminal device. This includes a unique ID for recognizing returning visitors, the so-called "Client ID", as well as certain technical parameters for controlling data collection for web analysis.
    • Google Analytics measurement data
      These are device-related raw data, so-called "dimensions" and "measured values", which are collected and analyzed by Google Analytics when using our website. This includes information about the sources through which visitors reach our website, information about the location, the browser and the terminal device used, information about the use of the website (page impressions, frequency of visits and length of stay on visited pages) as well as information about the fulfilment of certain objectives (transactions). The data we collect using Google Analytics does not enable us to identify you directly on a personal level (i.e., by your civil name). Nor does it provide any other personal information about the identity of the user.
    • Google Analytics report data
      This is data contained in aggregated reports and is created by raw device-related data. In Google Analytics, we have four report categories available: Audience (location, browser, devices used, as well as other device-related data), Acquisition (sources through which visitors arrive at the web offer), Behavior (information on calling up content of the web offer, visit time, bounce rate), Conversions (information on pre-configured goals, especially transactions in the online shop).
  3. The legal basis for the processing of the data is Art. 6 (1) a) GDPR (consent) in conjunction with Art. 25 of the Act on Data Protection and Privacy of Telecommunications and Telemedia Services (TTDSG)
  4. The data is automatically provided by the user's browser after consent has been given.
  5. The recipients of the data are Google Ireland Limited (Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland) within the scope of order processing. Google Ireland Limited uses Google LLC in the USA (1600 Amphitheatre Parkway, Mountain View, CA 94043, United States of America) as a service provider. The data will only be transmitted if you have given us your consent to do so (Article 6(1)(a) DSGVO).
  6. On this website, a so-called IP anonymization is activated for the use of Google Analytics. The IP anonymization function in Analytics sets the last octet of IPv4 addresses of users and the last 80 bits of IPv6 addresses in memory to zero. This happens shortly after they are sent to Google Analytics. We store the remaining log data for a period of 24 months.
  7. The provision of the above data is neither legally nor contractually required or necessary for the conclusion of a contract. There is no obligation to provide the data. If the data is not provided, we will not be able to perform web analysis using Google Analytics.
  8. There is no automated decision making.


b) Mouseflow

Mouseflow (Mouseflow Inc, Flaesketorvet 68, 1711 Copenhagen V, Denmark) is used to analyze this website and its visitors. Data is collected and stored for optimization purposes. The tool creates a log of mouse movements and clicks with the intention of randomly replaying individual website visits to continuously improve individual functions and offers as well as the user experience on the website. The information recorded by Mouseflow is not personal and will not be passed on.

  1. Data protection, privacy information and unsubscribe option
  2. The data processed are:
    • Mouseflow HTTP data
      This is log data that is technically generated when using the web analysis tool Mouseflow on the website via the Hypertext Transfer Protocol Secure (HTTPS). This includes IP address, type and version of your internet browser, the operating system used, the page accessed, the previously visited page (referrer URL) and the date and time of access.
    • Mouseflow measurement data
      This is device-related raw data that is collected and analyzed by Mouseflow when our website is used. This includes information about the sources through which visitors reach our website, information about the location, the browser and the terminal device used, information about the use of the website (page views) and information about the fulfilment of certain objectives (transactions). Furthermore, scrolling activities, viewed content & mouse movements are recorded. The information we collect through Mouseflow does not allow us to directly identify you personally (i.e., by your real name). It also does not provide any other personal information about the identity of the user.
    • Mouseflow report data
      This is data contained in aggregated reports and is generated by raw device-related data.
  3. The legal basis for the processing of the data is Art. 6 (1) a) GDPR (consent) in conjunction with Art. 25 of the Act on Data Protection and Privacy of Telecommunications and Telemedia Services (TTDSG)
  4. The data is automatically provided by the user's browser after consent has been given.
  5. The recipients of the data are Mouseflow Inc (Flaesketorvet 68, 1711 Copenhagen V, Denmark) within the scope of order processing. The data will only be transmitted if you have given us your consent to do so (Article 6(1)(a) DSGVO).
  6. This cookie will lose its validity after the session.
  7. The provision of the above data is neither legally nor contractually required or necessary for the conclusion of a contract. There is no obligation to provide the data. If the data is not provided, we cannot perform web analysis using Mouseflow.
  8. There is no automated decision making.

c) Econda

Econda (Econda GmbH, Zimmerstr. 6, 76137 Karlsruhe, Germany) collects and stores data for the purpose of analytics, needs-based optimisation of the website www.bogner.com, and to display use-related content or advertising.
The technologies and solutions deployed by Econda are used to collect and store pseudonymised data, from which usage profiles are created using a pseudonym. To this end, our website uses cookies to enable the recognition of Internet browsers.
If the website visitor explicitly consents, the created usage profiles can be combined with data about the bearer of the pseudonym. Consent is given by actively confirming the cookie banner on the website’s homepage. Immediately after being received, IP addresses are truncated so as to render them unrecognisable. This makes it impossible to assign usage profiles to IP addresses.
If you do not opt in, the Econda solutions will work in anonymous mode based on the current session. No manner of personal data, such as the IP address, customer number, or order number, will be stored. No cookies will be used. You will not be recognised upon later visits, and a profile cannot be created.
Visitors to the www.bogner.com website can object to the collection and storage of data in the future at any time. It should be noted that the objection only applies to the specific device and web browser used for this purpose. If applicable, please repeat the process on all devices and all web browsers used. If the opt-out cookie is deleted, requests will once again be transmitted to Econda.

  1. The data processor’s privacy policy can be found at: https://www.econda.de/en/privacypolicy/

    The data processor’s data protection officer can be reached at datenschutz@econda.de

  2. The following data are processed:

    With consent to cookies

    • (Truncated) IP address collected
    • Information about the device used
    • Information about pages viewed during the visit to the website
    • Information in the context of the ordering process
    • Information about access data
    • Customer data upon login or access

    Without consent to cookies (anonymised)

    • No cookies
    • All click data collected with selected metadata
    • IP address, customer number, order number, etc. not collected
  3. When Econda is used with analytics cookies and optimisation cookies, the legal basis for such processing is your consent in each case; see Art. 6 (1) (a) GDPR. When Econda is used in cookieless mode, the legal basis is the legitimate interest pursuant to Art. 6 (1) (f) GDPR. Our legitimate interest is based on the optimisation of our online services and our website. We receive analytics reports about how you use our website so that we can better tailor our services to your wishes.
  4. In the context of commissioned processing, the recipient of the data is Econda GmbH, Zimmerstr. 6, 76137 Karlsruhe.
  5. When cookies are used, the maximum duration of storage on a device is one year.
  6. The provision of the above-mentioned data is neither legally nor contractually required, nor is it necessary for entering into a contract. There is no obligation to provide the data. In the event that data are not provided, we cannot perform web analytics with Econda and cannot complete usage profiles.
  7. There is no automated decision-making.

4.3 Marketing Cookies


a) Microsoft Advertising

The advertising service Microsoft Advertising (Microsoft Ireland Operations Limited, The Atrium Building, Block B, Carmanhall Road, Sandyford Business Estate, Dublin 18, Ireland) makes it possible to play content on Microsoft Advertising that is specifically tailored to your interests and to subsequently analyze the Microsoft campaigns. Universal Event Tracking is used for this purpose. Via the tracking, Microsoft stores a cookie in the user's browser to enable an analysis of the use of our online offer. The prerequisite for this is that the user has reached this website via an advertisement from Microsoft Advertising. In this way, Microsoft and we can recognize that someone has clicked on an ad, has been redirected to our online offer and has reached a predefined target page (so-called conversion measurement). No further personal information about the identity of the user is disclosed.

  1. Privacy information and unsubscribe option
  2. The data processed are:
    • Microsoft Advertising HTTP data
      This is log data that is technically generated when using the Microsoft Advertising used on the website via the Hypertext Transfer Protocol Secure (HTTPS). This includes IP address, type and version of your Internet browser, the operating system used, the page accessed, the previously visited page (referrer URL) and the date and time of access. The cookie ID is also used to determine how often ads are displayed in a browser to control the frequency of ad display.
    • Microsoft Advertising Usage Data
      This is data that shows clicks on ads, time spent on the site, and individual site pages visited.
    • Microsoft Advertising Transaction Data
      This is data that summarizes the results of transactions. The data we collect through the Microsoft Advertising tool does not allow us to directly identify you personally (i.e., by your civil name). Nor does it provide any other personal information regarding the identity of the user.
  3. The legal basis for the processing of the data is Art. 6 (1) a) GDPR (consent) in conjunction with Art. 25 of the Act on Data Protection and Privacy of Telecommunications and Telemedia Services (TTDSG)
  4. The data is automatically provided by the user's browser after consent has been given.
  5. The recipients of the data are Microsoft Ireland Operations Limited (The Atrium Building, Block B, Carmanhall Road, Sandyford Business Estate, Dublin 18, Ireland) as part of the order processing. Microsoft Ireland Operations Limited may use Microsoft Corporations in the United States (One Microsoft Way, Redmond, WA 98052-6399, United States of America) as a service provider. The data will only be transmitted if you have given us your consent to do so (Article 6(1)(a) DSGVO).
  6. This cookie will lose its validity after 30 days.
  7. The provision of the above data is neither legally nor contractually required or necessary for the conclusion of a contract. There is no obligation to provide the data. If the data is not provided, we will not be able to carry out ad analysis and optimization using Microsoft Advertising.
  8. There is no automated decision making. We are not aware of any automated decision making by Microsoft regarding the display of advertisements.


b) Facebook Pixel

Through the Facebook Business Tool (Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland), we can place relevant ads for users on the Facebook advertising network (facebook.com, or on partner websites), create reports on campaign performance, build remarketing lists, and create interest-based target groups and lookalikes (so-called statistical twins). For these purposes, the Facebook Pixel is integrated on this website. This informs us how our users move between devices when they visit our website and Facebook and ensures that our ads on Facebook are seen by users who are interested in such ads based on user analytics on our website. By integrating the Facebook Pixel, Facebook receives the information that you have visited our website or clicked on an ad of ours. If you are registered with a Facebook service, Facebook can assign the visit to your account.

  1. Data protection, privacy information and unsubscribe option
  2. The data processed are:
    • Facebook Pixel HTTP data
      This is log data that is technically generated when using the Facebook Pixel on the website via the Hypertext Transfer Protocol Secure (HTTPS). This includes the IP address, type and version of your internet browser, the operating system used, the page accessed, the previously visited page (referrer URL) and the date and time of access.
    • Facebook Pixel end device data
      This is data that is generated by Facebook and assigned to your device. This includes a unique ID to recognize returning visitors.
    • Facebook Pixel measurement data
      This is device-related raw data that is collected and analyzed by the Facebook Pixel when using our website. This includes information on the completion of purchases, the shopping cart, search behavior, as well as individual page views on our website. The data that we collect by means of the Facebook Pixel does not enable us to identify you personally (i.e., based on your civil name). No further personal information about the identity of the user is communicated.
    • Facebook Pixel report data
      This is data contained in aggregated reports and is generated by raw device-related data. This includes information about the effectiveness of advertisements and mapping users to audiences for Facebook ads. Facebook may generate other data based on the information it collects for its own purposes or for the purposes of third parties.
  3. The legal basis for the processing of the data is Art. 6 (1) a) GDPR (consent) in conjunction with Art. 25 of the Act on Data Protection and Privacy of Telecommunications and Telemedia Services (TTDSG)
  4. The data is automatically provided by the user's browser after consent has been given.
  5. The recipients of the data are Facebook Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland) as part of the order processing. Facebook Ireland Limited may use Facebook Inc in the USA (1 Hacker Way, Menlo Park, CA 94025, United States of America) as a service provider. The data will only be transmitted if you have given us your consent to do so (Article 6(1)(a) DSGVO).
  6. This cookie will lose its validity after 90 days.
  7. The provision of the above data is neither legally nor contractually required or necessary for the conclusion of a contract. There is no obligation to provide the data. If the data is not provided, we will not be able to carry out ad analysis and optimization using Facebook.
  8. There is no automated decision making. We have no knowledge about the automated decision-making of the ad display by Facebook.


c) Google Ads

The Google Ads advertising service enables the placement of relevant ads in the Google advertising network (e.g., in the search results, or on other websites) and the creation of reports to improve campaign performance. For these purposes, when our website is called up, Google executes a code and integrates so-called remarketing tags into the website. With their help, an individual cookie is stored on the user's device. Remarketing allows us to target users who have already interacted with our website. The cookies can be set by various domains, including google.com, doubleclick.net, googlesyndication.com or googleadservices.com. All user data is processed only as pseudonymous data and we do not receive any information with which we can personally identify users. The ads displayed are therefore not targeted to a person, but to the owner of the cookie.


  1. Data protection, privacy information and unsubscribe option
  2. The data processed are:
    • Google Ads HTTP data
      This is log data that is technically generated when using the Google Ads tool used on the website via the Hypertext Transfer Protocol Secure (HTTPS). This includes IP address, type and version of your internet browser, the operating system used, the page accessed, the previously visited page (referrer URL) and the date and time of access. The cookie ID is also used to determine how often ads are displayed in a browser to control the frequency of ad display.
    • Google Ads Usage Data
      This is data that shows clicks on ads, time spent on the site, and individual site pages visited.
    • Google Ads transaction data
      This is data that summarizes the results of transactions. The data we collect through Google Ads does not allow us to directly identify you personally (i.e., by your civil name). It also does not provide any other personal information about the identity of the user.
  3. The legal basis for the processing of the data is Art. 6 (1) a) GDPR (consent) in conjunction with Art. 25 of the Act on Data Protection and Privacy of Telecommunications and Telemedia Services (TTDSG)
  4. The data is automatically provided by the user's browser after consent has been given.
  5. The recipients of the data are Google Ireland Limited (Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland) within the scope of order processing. Google Ireland Limited uses Google LLC in the USA (1600 Amphitheatre Parkway, Mountain View, CA 94043, United States of America) as a service provider. The data will only be transmitted if you have given us your consent to do so (Article 6(1)(a) DSGVO).
  6. This cookie will lose its validity after 90 days.
  7. The provision of the above data is neither legally nor contractually required or necessary for the conclusion of a contract. There is no obligation to provide the data. If the data is not provided, we will not be able to carry out ad analysis and optimization using Google Ads.
  8. There is no automated decision making. We have no knowledge of the automated decision-making process for the display of advertisements by Google.

Privacy Policy for Google Enhanced Conversion

This website uses the Google Ads tracking tool, a service provided by Google Ireland Ltd, Gordon House, Barrow Street Dublin 4 IE (“Google”). As part of Google Ads, we use so-called enhanced conversion tracking. The aim is to advertise our products and draw attention to our offers.

If you click on an advert placed by Google, a cookie is set for enhanced conversion tracking. If you carry out a conversion on our website, e.g. make a purchase, the user data (email address, name, etc.) is recorded via conversion tracking tags, hashed and sent to Google as hash data and then used to improve the conversion measurement. Google then compares whether the transmitted user data matches existing Google customers. This information is used to assign users to the corresponding Google accounts in which they were logged in as users when they interacted with one of our adverts. We only receive statistical analyses from “Google” to measure the success of our advertising material.

The legal basis for the processing is your consent in accordance with Art. 6 (1)(a) GDPR in conjunction with Art. 25 TTDSG - (Telekommunikation-Telemedien-Datenschutz-Gesetz) [Telecommunications and Telemedia Data Protection Act.] If you do not wish to participate in tracking, you can object to this use (see point 1 of the cookie information). You will then not be included in the conversion tracking statistics.

Since Google is headquartered in the United States, this does not preclude data processing on Google servers in the United States. As a result, there is a risk that your data may be processed by the US authorities for control and monitoring purposes without you having any legal recourse. To ensure an appropriate level of data protection, we have concluded standard EU contractual clauses with Google, which can be viewed here: https://business.safety.google/adscontrollerterms/sccs/eu-c2c/.

You can find more information about Google Ads and Google enhanced conversion tracking in Google's pricavy policy.


d) AWIN

AWIN (AWIN AG, Eichhornstraße 3, 10785 Berlin, Germany) is an affiliate marketing platform and enables commercial operators of websites to place advertisements for other companies that are paid per click or via sales commission. Cookies are used to correctly assign those advertising materials that have been successfully deployed for a transaction on our website and need to be billed. This records whether, when, and via which activity the advertising material was used by a particular end device.

  1. Data Protection and personal information
  2. Data processed:
    • IP address, data from website usage (information on which advertisement you viewed to reach the website; length of time spent on the website and which areas of the website were viewed; loading times of the website, browser and display settings), postcode, device data, end device, order number, value of shopping basket, commission group, voucher code, currency, cookie ID
  3. The legal basis for cookie storage is the consent given (Art. 6 (1) a) GDPR in conjunction with Section 25 of the German Telecommunications and Telemedia Data Protection Act [Teledienstdatenschutzgesetz -TTDSG]).
  4. After giving consent, the data is provided automatically via the user’s browser.
  5. The data recipient within the scope of data processing is AWIN AG (Eichhornstraße 3, 10785 Berlin, Germany).
  6. The cookie is no longer valid after 365 days.
  7. The provision of the above-mentioned data is neither legally nor contractually required, nor is it necessary for entering into a contract. There is no obligation to provide the data.
  8. There is no automated decision-making.


e) KUPONA

KUPONA (KUPONA GmbH, Kothenbachweg 6, 36041 Fulda, Germany) is a remarketing partner and facilitates optimised delivery of advertising campaigns. Cookies are created by KUPONA and its data processors for every visitor to our website and are stored by the browser. Both KUPONA and its data processors that are required to implement the service assign an individual id to the user, which is saved in the cookie, and to which surfing behaviour attributes can be saved in the cookie or in the service’s database. We share responsibility for this with KUPONA. KUPONA collects transaction data and technical parameters from users, who use our web offering, to be able to show them advertisements tailored to their interests. We are not able to draw conclusions regarding the identity of the user.

  1. Data protection and personal information
  2. Data processed:
    KUPONA collects transaction data, such as product, brand or category interests as well as technical parameters in the form of browser information, display resolution, town/city, federal state, country, IP address, referrer, mobile device, device classes. KUPONA stores all of the information in the cookie or in databases as an attribute behind the pseudonymous cookie ID assigned. No server-side technologies are deployed by KUPONA that create a profile independently from the cookie.
  3. The legal basis for cookie storage is the consent given (Art. 6 (1) a) GDPR in conjunction with Section 25 of the German Telecommunications and Telemedia Data Protection Act [Teledienstdatenschutzgesetz -TTDSG]). Unless consent is withdrawn, the data is stored for a period of 365 days.
  4. After giving consent, the data is provided automatically via the user’s browser.
  5. The data recipient within the scope of data processing is Kupona GmbH (Kothenbachweg 6, 36041 Fulda, Germany).
  6. The cookie is no longer valid after 365 days.
  7. The provision of the above-mentioned data is neither legally nor contractually required, nor is it necessary for entering into a contract. There is no obligation to provide the data. If data is not provided, we cannot make any affiliate payments using Hearts & Science Smart Tracking.
  8. There is no automated decision-making.


f) Criteo

The retargeting technology from Criteo SA, of 32 Rue Blanche, 75009 Paris, France (www.criteo.com/de) is integrated into this website. Deployment of this technology makes it possible to display product advertisements to you on third-party sites (publisher sites) that you have viewed on our website. For this purpose, Criteo collects information about your usage on our website by deploying tracking cookies and similar technologies that are placed in your browser. As a result, Criteo can analyse trends and identify the interests of individual users with regard to websites. Using these technologies, Criteo can flag visitors to its partner websites. Users flagged by Criteo receive a technical ID. At no time does Criteo gather personal data that makes it possible to identify individuals, such as names or addresses. Criteo only analyses the products viewed or the search habits and pages visited for the partner’s web presence, for which Criteo delivers advertising. Other uses or transfers to third parties are excluded. Data is stored for up to 13 months and is then automatically deleted. You can find more information on Criteo technology below.

  1. Privacy information and opt-out option
  2. Data processed:
    This list contains all the (personal) data collected by or through the use of this service:
    • Browser information
    • Click path
    • Date and time of the visit
    • Device data
    • Viewed files
    • Location information
    • IP address (not for targeting, but for (1) fraud detection to alert us to situations not caused by human behaviour, such as massive clicks over a limited period; (2) revenue allocation; (3) marketing reports using aggregated data)
    • Mobile advertising IDs
    • Number of page views
    • Viewed products
    • Search terms
    • Technical IDs
    • Usage data
    • Number of advertisements placed
    • Referrer URL
  3. The legal basis for cookie storage is the consent given (Art. 6 (1) a) GDPR in conjunction with Section 25 of the German Telecommunications and Telemedia Data Protection Act [Teledienstdatenschutzgesetz -TTDSG]).
  4. After giving consent, the data is provided automatically via the user’s browser.
  5. The cookie is no longer valid after 13 months.
  6. The data recipient within the scope of data processing is Criteo SA, 32 Rue Blanche, 75009 Paris, France.
  7. The provision of the above-mentioned data is neither legally nor contractually required, nor is it necessary for entering into a contract. There is no obligation to provide the data. If data is not provided, the site’s functionality may be limited.
  8. There is no automated decision-making.


g) Pinterest

Through the Pinterest conversion tracking technology (Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland) of the social network Pinterest, we can create relevant ads for users, reports on campaign performance, build remarketing lists, as well as interest-based target groups and lookalikes (so-called statistical twins). For this purpose, a so-called conversion tracking pixel from Pinterest is integrated on our pages, via which Pinterest is informed when you visit our website that you have accessed our website and in which parts of our offer you were interested. If, for example, you have shown interest in one of our products on our website, you may be shown an ad for our products on Pinterest.

  1. Data protection and privacy information
  2. The data processed are:
    • Pinterest Tag HTTP data
      This is log data that is technically generated when the Pinterest tag used on the website is used via the Hypertext Transfer Protocol Secure (HTTPS). This includes the IP address, type and version of your internet browser, the operating system used, the page accessed, the previously visited page (referrer URL) and the date and time of access.
    • Pinterest tag device data
      This is data that is generated by Pinterest and assigned to your device. This includes the device type, the operating system, or a unique device identifier.
    • Pinterest Tag Measurement Data
      This is device-related raw data that is collected and analyzed by the Pinterest tag when using our website. This includes information on the completion of purchases, the shopping cart, search behavior, as well as individual page views on our website. The data that we collect using the Pinterest tag does not allow us to identify you personally (i.e., by your civil name). No further personal information about the identity of the user is communicated.
    • Pinterest Tag Report Data
      This is data contained in aggregated reports and is generated by raw device-related data. This includes information about the effectiveness of ads and mapping users to audiences for Pinterest ads. Pinterest may generate other data from the information it collects for its own purposes or for the purposes of third parties.
  3. The legal basis for the processing of the data is Art. 6 (1) a) GDPR (consent) in conjunction with Art. 25 of the Act on Data Protection and Privacy of Telecommunications and Telemedia Services (TTDSG).
  4. The data is made available automatically by the user's browser after consent has been given.
  5. The recipients of the data are Pinterest Europe Limited (Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland) as part of the order processing. Pinterest Europe Limited may use Pinterest Inc in the USA (505 Brannan Street, San Francisco, CA 94107, United States of America) as a service provider. The data will only be transmitted if you have given us your consent to do so (Article 6(1)(a) DSGVO).
  6. This cookie will lose its validity after 365 days.
  7. The provision of the above data is neither legally nor contractually required or necessary for the conclusion of a contract. There is no obligation to provide the data. If the data is not provided, we cannot carry out ad analysis and optimization using Pinterest.
  8. There is no automated decision making. We have no knowledge about the automated decision-making of the ad display by Pinterest.


h) trbo

TRBO (trbo GmbH, Leopoldstr. 41, 80802 Munich, Germany) is an onsite personalization platform to address customers individually, personally and in real time. In the process, data is collected and stored, from which usage profiles are created using pseudonyms. Cookies can be used for this purpose, which enable the recognition of an Internet browser. These usage profiles are used to analyse visitor behaviour and are evaluated to improve our offer and to design it in line with requirements. The pseudonymised usage profiles are not combined with personal data about the bearer of the pseudonym without the separate consent of the person concerned. We are not informed of any personal information about the identity of the user.

  1. Privacy information and unsubscribe option
  2. The data processed are:
    • trbo HTTP data
      This is log data that is technically generated when the web personalization tool trbo used on the website is used via the Hypertext Transfer Protocol Secure (HTTPS). This includes IP address, type and version of your internet browser, the operating system used, the page accessed, the previously visited page (referrer URL) and the date and time of access.
    • trbo usage data
      This is device-related raw data that is collected and analyzed by trbo when you use our website. For this purpose, pseudonymous usage profiles are created to be able to offer personalized customer benefits. The data that we collect through trbo does not enable us to identify you directly on a personal level (i.e. on the basis of your civil name). Also, no further personal information about the identity of the user is communicated.
  3. The legal basis for the processing of the data is Art. 6 (1) a) GDPR (consent) in conjunction with Art. 25 of the Act on Data Protection and Privacy of Telecommunications and Telemedia Services (TTDSG).
  4. The data is automatically provided by the user's browser after consent has been given.
  5. ecipients of the data are trbo GmbH (Leopoldstr. 41, 80802 Munich, Germany) within the scope of order processing. The data will only be transmitted if you have given us your consent to do so (Article 6(1)(a) DSGVO).
  6. This cookie will lose its validity after the 1095 days.
  7. The provision of the above data is neither legally nor contractually required or necessary for the conclusion of a contract. There is no obligation to provide the data. If the data is not provided, we cannot guarantee the proper use of the website.
  8. There is no automated decision making.


i) Use of Vimeo videos


We embed videos on our website with the help of Vimeo. The provider of the Vimeo platform is

Vimeo, LLC, 555 West 18th Street, New York, NY 10011 USA.


The aim of our website is to provide you with the best possible content. Vimeo offers us the opportunity to present you with high-quality content directly on our website. This expands our service and makes it easier for you to access interesting content.

The content of these videos is stored directly on the platform and embedded on our site. If you access such a video, the IP address, technical information such as browser, operating system and basic device information as well as the website you visited are communicated.


Personal data is only transmitted when you call up a video. Only then will a server connection to Vimeo be established and a corresponding cookie created, which is used to save your settings.

Before you access a video, you will be informed about it again. If you have an account with the video service provider, they may be able to identify you. You can avoid this by logging out of your account before playing a video.


The legal basis for the activation of these videos is your consent in accordance with Art. 6 (1) a) GDPR.

When using Vimeo, a USA-third country transfer takes place.

Vimeo uses standard contractual clauses as the basis of the processing. These are templates provided by the EU Commission and are designed to ensure that your data complies with European data protection standards even if it is transferred and stored in third countries.

Further information on data protection at Vimeo can be found here:

https://livestream.com/legal/cookie-preferences.

You can prevent the processing of data by Vimeo in various ways: You can completely disable the storage of cookies in your browser. However, this means that you may no longer be able to use some of the functions on our website. You can also activate the “Do-not-Track” setting in your browser.


j) Adyen


Pay via PayPal, Google Pay and Apple Pay


If you choose the payment service provider Adyen as the payment type, payment will be processed through the payment service provider Adyen N.V., Simon Carmiggeltstraat 6-50, 1011 DJ, Amsterdam, Netherlands. The payment service provider accepts payments from customers using the various payment methods for BOGNER in its own account and pays the monies from the sale of the products to BOGNER.


The data processed will depend on the payment method selected. It includes data such as contact details (name, address, email address), the transaction (shopping cart value, product group), the payment method and the data required for this. This data is processed for the purpose of payment processing (Art. 6 (1) b) GDPR).


Adyen also processes your data for the purposes of preventing payment fraud and also shares this data with its customers as required (Art. 6 (1) f) GDPR). For more information on data processing at Adyen N.V., please see the following link here.