Here is the Privacy Policy (Datenschutzerklärung) translated into English with the updated email:

Privacy Policy for Bob's (Retail as Bob's)
(Effective: March 26, 2025)

Responsible Entity

Bob's
Wandsbeker Stieg 27, 22087 Hamburg, Germany
Email: info@bobshub.de
VAT ID: DE450802617

1. Data Collected

a) Data Provided by You

  • Names, email addresses, phone numbers
  • Billing addresses, contact preferences
  • Payment data (processed via secure payment providers)

Legal basis: Art. 6(1)(b) GDPR (Contract performance).

b) Automatically Collected Data

  • Server log files: IP address, browser type, access time
  • Device data: Device ID, location (via IP), operating system
  • Cookies: Details in our cookie policy.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in IT security and fraud prevention).

2. Purpose of Data Processing

We process your data for:

  • Contract performance (e.g., order processing),
  • Customer communication and marketing (only with your consent in accordance with Art. 6(1)(a) GDPR),
  • Fraud prevention and IT security,
  • Compliance with legal obligations (e.g., §147 AO).

3. Data Sharing

We share data with:

  • Payment service providers (e.g., Saman Hajibabaei, T&Cs),
  • Hosting providers (server location: Germany/EU),
  • Google Maps API (location data, limited to 12 months).

Guarantees:

  • All service providers sign a data processing agreement (DPA) in accordance with Art. 28 GDPR.
  • For data transfers to third countries (e.g., USA), we use EU Standard Contractual Clauses (SCCs) and technical protective measures.

4. Retention Period

  • Payment data: 10 years after contract completion (§147 AO),
  • Account data: Until deleted by the user,
  • Log files: 7 days,
  • Google Analytics data: Automatic deletion after 14 months.

5. Your Rights under GDPR

You have the right to:

  • Access (Art. 15),
  • Rectification (Art. 16),
  • Deletion (Art. 17),
  • Restriction of processing (Art. 18),
  • Data portability (Art. 20),
  • Objection to direct marketing (Art. 21).

Contact:
Phone: +49 40 28283225
Email: info@bobshub.de
Post: Bob's, Wandsbeker Stieg 27, 22087 Hamburg.

6. Cookies & Tracking

We use:

  • Necessary cookies (e.g., session cookies without consent),
  • Analytical cookies (e.g., Google Analytics) only with your active consent.

Details:

  • IP anonymization in Google Analytics enabled (anonymizeIp),
  • Data transfer to third countries disabled,
  • Adjust cookie settings: [Cookie banner] or cookie policy.

7. Security

  • SSL encryption enabled (HTTPS on https://www.bobshub.de),
  • Regular security audits by external service providers,
  • Access controls and pseudonymized data storage.

8. Data Protection Officer

Saman Hajibabaei
Email: Saman.hajibabaei@hamburg.de
Mobile: +49 176 62024674

9. Changes to this Policy

Updates are indicated by the date above. For significant changes, we will inform you via email.

Legal Additions for Germany

  • Cookie Policy: Separate page with detailed cookie table (name, provider, category, expiration date).
  • Google Analytics: Compliant with TTDSG and GDPR through consent management (Tool: Cookiebot).

Imprint

Information according to §5 TMG:
Owner: Saman Hajibabaei
Address: Wandsbeker Stieg 27, 22087 Hamburg
Contact:

  • Phone: +49 40 28283225
  • Mobile: +49 176 62024674
  • Email: info@bobshub.de
    VAT ID: DE450802617

Disclaimer

The content of this website is regularly reviewed; however, liability for errors is excluded (§7 TMG).
Recommendation: Have this policy reviewed by an IT law professional, especially regarding the use of Google services. (Source: Adapted from eRecht24 and BfDI guidelines.)

Summary of Key Changes

  1. Complete GDPR rights: Addition of Art. 18 (restriction) and Art. 20 (data portability).
  2. Data transfer to third countries: Clarification on SCCs and technical protective measures.
  3. Retention periods: Google Analytics data deleted after 14 months.
  4. Data protection officer: Required information according to §38 BDSG.
  5. TTDSG compliance: Cookie consent explicitly highlighted.

Supervisory Authority:

The Hamburg Commissioner for Data Protection
Kurt-Schumacher-Allee 4, 20097 Hamburg
Tel: +49 40 42854-4040

In case of data transfer to third countries, we use additional SCCs, end-to-end encryption, and regular security checks.