Skip to content

PRIVACY POLICY

We appreciate your interest in MONONODES.com. The protection of your personal data is of utmost importance to us. The following explains how we process personal data in accordance with the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG), and the Telecommunications Telemedia Data Protection Act (TTDSG).

1. Controller (Art. 4 No. 7 GDPR)

The responsible party (“controller”) for data processing on this website is:

Name / Business:
Stefan Ringelschwandtner
Spenerstraße 19
10557 Berlin
Germany

E-mail: stefanATmononodesDOTcom
Phone: +49 151-42840220
(Please note that this phone number is exclusively for legal and administrative inquiries.
For any customer or support requests, please use our e-mail address.)

2. Hosting & E-mail Communication

2.1 Hosting Provider

Our website is hosted by ALL-INKL.COM – Neue Medien Münnich

Hosting is necessary for the operation and maintenance of our online services. In this context, the following data may be processed:

  • IP addresses (possibly anonymized)
  • Access times, referrer URLs, browser type/version, operating system
  • Server log files (see also Section 5.1)

We have concluded a data processing agreement (pursuant to Art. 28 GDPR) with ALL-INKL.COM to ensure GDPR compliance.

2.2 E-mail Communication

If you contact us via e-mail, we will process the personal data you provide (e.g., your e-mail address, name, message content) for the purpose of handling your inquiry. The legal basis for this is Art. 6(1)(b) GDPR (contract or pre-contractual measures) or Art. 6(1)(f) GDPR (our legitimate interest in processing inquiries).

3. Terminology

The terms used in this Privacy Policy (e.g., “personal data,” “processing,” “controller”) are based on the definitions found in Article 4 of the GDPR. For more detailed explanations, please refer to the actual GDPR text.

4. Legal Bases of Processing

We process personal data exclusively in accordance with the GDPR and the BDSG. Depending on the type of processing, our legal bases include in particular:

Section 25(2) TTDSG: Legal basis for setting technically necessary cookies.

Art. 6(1)(b) GDPR: Processing necessary for the performance of a contract or pre-contractual measures (e.g., order transactions).

Art. 6(1)(f) GDPR: Processing based on our legitimate interests, such as IT security, server log files, or web analytics (Plausible).

5. Which Data Is Processed?

5.1 Automatically Collected Technical Data (Server Log Files)

When you access our website, our servers or those of our hosting provider automatically record technical data:

  • Browser type/version
  • Operating system
  • IP address (possibly anonymized)
  • Date/time of access
  • Referrer URL (the previously visited page)

Purpose of Processing:

  • Ensuring a smooth connection setup
  • System security and stability
  • Troubleshooting and abuse prevention

Legal Basis:
Art. 6(1)(f) GDPR (legitimate interest in providing a secure, functional website).

Storage Period:
Server log files are typically deleted automatically after 30 days.

5.2 Data for Orders or Contact Requests

If you place an order via our online shop (WordPress + WooCommerce Germanized) or contact us (via form or email), we process:

  • Order Data: Name, address, email, possibly phone number
  • Payment Information: Processed by third-party providers (e.g., PayPal, Stripe, Klarna). We do not store complete payment details.
  • Order Details: Products purchased, invoice amounts, timestamps, etc.

Purpose of Processing:

Customer support (Art. 6(1)(b) and/or (f) GDPR)

Contract fulfillment (Art. 6(1)(b) GDPR)

Compliance with legal retention obligations (e.g., under German Commercial Code, Tax Code)

6. Cookies & TTDSG

In accordance with the Telecommunications Telemedia Data Protection Act (TTDSG), we only use technically necessary cookies to ensure the core functionality of our website and online shop (e.g., shopping cart functionality, session management). These cookies do not require prior user consent as they are essential for the operation and proper performance of our services.

Legal Basis:

  • Section 25(2) TTDSG: Permits the storage of information (e.g., cookies) that is strictly necessary for providing a telemedia service the user requests.
  • Art. 6(1)(b) GDPR: Allows processing necessary for contract performance (e.g., enabling a purchase transaction).
  • Art. 6(1)(f) GDPR: Covers our legitimate interest in maintaining a secure and user-friendly website.

Cookie Management: You can configure your browser to block or delete cookies at any time. However, please note that if you disable technically necessary cookies, certain features of our website (such as the shopping cart) may not function properly.

7. Web Analytics (Plausible Analytics)

We use Plausible Analytics (https://plausible.io/), a privacy-friendly service that does not rely on cookies or collect personal data in the traditional sense. Instead, it gathers only aggregated, anonymized statistics such as:

  • Page views, referrer information, and browser types (in anonymized form)
  • No IP address storage and no device fingerprints
  • No creation of individual user profiles
  • Open-source solution (publicly available code)

Legal basis: Art. 6(1)(f) GDPR (our legitimate interest in analyzing and improving our website performance).
For more information, see Plausible’s Data Policy here: https://plausible.io/data-policy

8. External Services

8.1 Google Fonts
Our website uses Google Fonts, provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). When you visit our site, your browser automatically loads fonts from Google’s servers, which may involve transmitting your IP address to Google.

  • Legal basis: Art. 6(1)(f) GDPR (our legitimate interest in a visually consistent and appealing website).
  • Further details can be found here: https://policies.google.com/privacy

Note:
You can configure your browser to block external font requests if you do not wish to load Google Fonts. This may affect how the website is displayed.

8.2 YouTube & Vimeo
We embed videos from:

  • YouTube (Google Ireland Limited, Dublin, Ireland)
  • Vimeo (Vimeo Inc., New York, USA)

YouTube (Enhanced Privacy Mode)
Videos are embedded in “enhanced privacy mode” (https://www.youtube-nocookie.com). Only when you click to play a video is a connection established to YouTube’s servers, which may process personal data such as your IP address.

Vimeo (“Do Not Track”)
Our Vimeo videos are embedded using “Do Not Track,” so no cookies are placed before you start playing a video. Only when you click play will your IP address and other technical data be transmitted to Vimeo.

Data Transfers to Third Countries
By playing these embedded videos, personal data may be transferred to the USA. We rely on Standard Contractual Clauses (SCC) as provided by YouTube/Google and Vimeo to ensure an adequate level of data protection where applicable. However, there remains a risk that U.S. authorities may access your data without sufficient legal remedies.

Google Privacy Policy: https://policies.google.com/privacy

Vimeo Privacy Policy: https://vimeo.com/privacy

9. WooCommerce Web Shop (Germanized)

We use WooCommerce with the WooCommerce Germanized plugin, which is tailored to German market requirements (e.g., Terms & Conditions checkboxes, withdrawal information, etc.).

Data Processed:

  • Order Data: Name, address, email, phone (if applicable), order history
  • Payment Data: Payment method, possibly transaction ID (no complete payment details stored)
  • Shopping Cart Data (temporarily stored in cookies)

Purpose:

  • Order processing and customer support
  • Compliance with legal archiving obligations (Art. 6(1)(c) GDPR)

Retention Period:

Shopping cart data: until the end of the browsing session

Order data: up to 10 years (according to German Commercial and Tax Laws)

10. Payment Providers

We offer payments via PayPal, Stripe, Klarna, and Sofortüberweisung. When using these services, personal data is transmitted directly from you to these providers.

Please refer to each provider’s privacy policy:

The legal basis is Art. 6(1)(b) GDPR (processing payments to fulfill a contract).

11. Your Rights (Art. 12 ff. GDPR)

As a data subject, you have the following rights:

  1. Right of Access (Art. 15 GDPR): Obtain information about your stored personal data.
  2. Right to Rectification (Art. 16 GDPR): Correct inaccurate or incomplete personal data.
  3. Right to Erasure (Art. 17 GDPR): Delete your data, provided there are no legal retention obligations.
  4. Right to Restriction of Processing (Art. 18 GDPR): Restrict processing in certain cases.
  5. Right to Data Portability (Art. 20 GDPR): Receive your data in a structured, commonly used, machine-readable format.
  6. Right to Object (Art. 21 GDPR): Object to processing, if based on Art. 6(1)(e) or (f) GDPR.

Please send your request to:
stefanATmononodesDOTcom

If you believe your data is processed unlawfully, you may lodge a complaint with a supervisory authority, particularly in the EU Member State of your habitual residence or the place of the alleged infringement. For Berlin, Germany:

Berlin Commissioner for Data Protection and Freedom of Information
https://www.datenschutz-berlin.de/

12. Storage & Deletion of Data

Contact Inquiries: Deleted after the request is completed, unless further retention periods apply

Order Data: 10 years (due to legal retention obligations under the German Commercial Code and Tax Code)

Server Log Files: 30 days

13. Automated Decision-Making & Profiling

We do not use automated decision-making or profiling.

14. SSL/TLS Encryption

Our website uses SSL or TLS encryption (indicated by “https://” in your browser’s address bar) to protect your data during transmission.

15. Changes to this Privacy Policy

We reserve the right to update or amend this Privacy Policy at any time to reflect legal, technical, or organizational changes. The current version is always available on this page of our website.

Last Updated: February 2025