legal page

Welcome to Volumenzeit Watches!

We value your trust and are committed to protecting your personal data.
This Privacy Policy explains in transparent, clear language how we collect, use, store and share personal information when you visit volumenzeit.com, create an account, purchase our products, communicate with us, or interact with our brand online.

We comply with the General Data Protection Regulation (GDPR), the German TTDSG (Telecommunications and Telemedia Data Protection Act), the California Consumer Privacy Act (CCPA/CPRA), and all other applicable laws.

 

1. Data Controller

Dmitrii Vorontsov
operating under the brand “Volumenzeit”
Kienestrasse 1
80933 Munich
Germany

E-mail: info@volumenzeit.com
Phone: (+49) 089 69314282

We are responsible for determining the purposes and means of personal data processing within the scope of Art. 4(7) GDPR.

 

2. Personal Data We Collect

We only collect the data necessary to operate our online shop, fulfil orders, improve our services, and communicate with you.

2.1. Website Visit Data

When you visit our website, our systems automatically collect:

• IP address;
• device and browser type;
• operating system;
• referring URL;
• pages visited and interactions;
• time and duration of visit;
• cookies and similar identifiers.

 

We use this data to ensure website stability, security and performance, and to improve the user experience.

 

2.2. Order and Payment Data

When you place an order, we process:

• full name;
• billing and shipping address;
• phone number;
• email address;
• purchased products (SKU, configurations);
• payment transaction IDs;
• payment status;
• fraud-check outcomes from payment partners.

 

This data is required to complete your order, deliver your products, issue invoices, and handle returns.

 

2.3. Communication Data (Email, Instagram DM, Facebook Messages)

If you contact us via email or social media, we process:

• your name or public username;
• your message content;
• attachments if provided;
• communication history and metadata.

 

We use this information solely to respond to your inquiries and provide support.

 

2.4. Customer Accounts

When you create an account, we process:

• encrypted login credentials;
• saved addresses;
• order history;
• preferences and settings.

 

Accounts allow you to manage past orders and checkout more efficiently.
You may request deletion of your account at any time.

 

2.5. Reviews and User-Generated Content (UGC)

If you submit reviews, ratings, photos, or voluntarily share content with us, we may publish it:

• on our website;
• in newsletters;
• on Instagram or Facebook;
• in promotional materials.

 

By submitting UGC, you confirm that you own the rights to the content and grant us a non-exclusive, royalty-free license to display it for marketing and product presentation.

 

2.6. Newsletter and Marketing Emails

If you subscribe to our newsletter, we process:

• email address;
• consent data (timestamp, IP);
• interaction data (opens/clicks).

 

You may unsubscribe at any time.

 

2.7. Cookies, Analytics, and Marketing Technologies

We use cookies for essential website functionality.

Analytics and marketing tools (Google Analytics 4, Meta Pixel) are only activated after your explicit consent, as required by TTDSG.

You may change or withdraw consent at any time through our cookie settings.

 

3. Purposes and Legal Bases for Processing (Art. 6 GDPR)

We process personal data on the following legal bases:

Contract necessity (Art. 6(1)(b))

• fulfilling orders;
• handling payments;
• managing customer accounts;
• responding to support inquiries.

 

Legal obligation (Art. 6(1)(c))

• invoice storage;
• tax documentation;
• compliance requirements.

 

Legitimate interest (Art. 6(1)(f))

• securing our website;
• fraud prevention;
• improving services;
• ensuring platform stability.

 

Consent (Art. 6(1)(a))

• newsletters;
• analytics;
• marketing cookies;
• personalised ads.

 

4. Cookies & Consent (TTDSG Compliance)

We use a consent management system (CMP) to ensure that:

• essential cookies load automatically;
• analytics and advertising cookies load only after consent;
• Meta Pixel and GA4 remain blocked until accepted.

 

This is legally required in Germany.
You may adjust your consent choices at any time.

 

5. Payment Processing and Fraud Prevention

Payments are processed by PCI-DSS compliant providers such as Stripe or PayPal.
We never store full credit card numbers.

Our payment partners may conduct automated fraud assessments to protect both you and our business. These systems analyse:

• device fingerprinting;
• IP checks;
• behavioural patterns;
• risk indicators.

We only receive the result (approved / declined), not the underlying analysis.

 

6. Social Media Interactions (Instagram & Facebook)

When you interact with us on social media (Instagram DM, Facebook messages, comments, tags), we receive your:

• username;
• public profile details;
• message content.

Social networks process your data under their own privacy policies.
We only use this information to respond to your messages.

 

7. Publication of Reviews and Customer Photos

Any review, rating, photo, or content you submit voluntarily may be used to present our products and brand.
We display this content respectfully and do not alter it except for formatting.

 

8. Third-Party Service Providers

We work with carefully selected external service providers who help us operate our online shop, process payments, send communications, and deliver orders. All providers act either as independent controllers or as processors under Art. 28 GDPR.

8.1. Hosting & Infrastructure

Our website is hosted by:

Hostinger International Ltd.
Hostinger provides server infrastructure, security, storage, and technical environments needed to operate this website.
Depending on the hosting configuration, data may be stored on servers located within the European Union.

8.2. Payment Providers (Mollie, Apple Pay, Klarna)

Payments on our website are processed by:

Mollie B.V.

Mollie is a regulated European payment institution and acts as the gateway for multiple payment methods.
When you pay, Mollie processes:

• payment token;
• transaction ID;
• risk assessment data;
• selected payment method;
• fraud-prevention metadata.

We do not receive full card numbers or sensitive payment credentials.

Apple Pay (via Mollie)

If you choose Apple Pay, Apple may process device and tokenized payment data under their own privacy terms.
We only receive a confirmation from Mollie that payment was completed.

Klarna (via Mollie)

Klarna may perform additional identity or risk checks, depending on the selected Klarna service (Pay Now / Pay Later / Slice It).
Klarna acts as an independent controller for these assessments.

PayPal (if enabled in your WooCommerce)

Even if not used frequently, PayPal may still appear as an available method.
PayPal processes account, transaction and anti-fraud data independently.

8.3. Shipping & Logistics (Easyship + Carriers)

We use Easyship to manage shipping rates, courier integrations and tracking information.

Through Easyship, your order data (name, shipping address, selected service, parcel weight/dimensions) may be shared with:

• DHL
• DPD
• FedEx
• UPS

These carriers receive only the information required to deliver your order.

Easyship itself acts as a data processor on our behalf.

8.4. Email & Communication Services

Brevo (Sendinblue)

Used for marketing emails, newsletters and certain transactional messages.
Brevo primarily hosts data within the EU.

MailPoet

Used inside WooCommerce to send transactional emails (order confirmation, status updates).
Depending on your configuration, MailPoet may store limited information (email, IP for double-opt-in).

8.5. Analytics & Advertising

We use:

Google (Google Analytics 4, Google Ads)

Processes analytics identifiers, interaction data and marketing attribution after cookie consent.

Meta Platforms (Facebook & Instagram Pixel)

Processes advertising and interaction data for performance measurement and personalised ads — only after consent.

8.6. Customer Support & Communication Channels

When you contact us, your data may be processed by:

• Instagram (Meta Platforms Ireland Ltd.);
• Facebook Messenger;
• Email servers (Hostinger or Brevo).

Each of these platforms acts under its own privacy terms.

9. International Transfers (EU–US Data Privacy Framework)

Some providers (Google, Meta) may process data in the USA.

Transfers occur only when:

• the provider is certified under the EU–US Data Privacy Framework, or
• Standard Contractual Clauses (SCCs) with additional safeguards are used.

We ensure that your data remains protected in accordance with GDPR.

 

10. External Links

Our website may link to external pages. We are not responsible for their content or data practices.
Please review their privacy policies.

 

11. Automated Decision-Making

We do not make automated decisions that produce legal effects or significantly affect users.
Fraud checks by payment processors may be automated but are not performed by us.

 

12. Children’s Data

Our services are not intended for individuals under 16 years of age.
We do not knowingly collect data from minors.

 

13. Your GDPR Rights

You have the right to:

• access your personal data;
• request corrections;
• request deletion;
• restrict processing;
• data portability;
• object to processing (including marketing);
• withdraw consent;
• file a complaint with the supervisory authority.

 

Supervisory Authority (Germany)

Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)
Promenade 27, 91522 Ansbach, Germany
https://www.lda.bayern.de

 

14. Data Retention

We retain:

• order and invoice data: 10 years
• customer support messages: up to 3 years
• account data: until deletion
• marketing data: until opt-out
• server logs: 14–60 days

We store data only as long as necessary for our operations and legal obligations.

 

15. Security Measures

We apply strict technical and organisational protections, including:

• TLS/HTTPS encryption;
• secure hosting infrastructure;
• firewalls and access control;
• encrypted authentication data;
• ongoing monitoring and backups.

 

16. EU Online Dispute Resolution (ODR) Platform

According to EU Regulation No. 524/2013, consumers may submit complaints via the Online Dispute Resolution platform:
https://ec.europa.eu/consumers/odr/

We are neither willing nor obliged to participate in dispute resolution proceedings before consumer arbitration boards.

 

17. Addendum for California Residents (CCPA/CPRA)

This section applies to California residents.

Your rights include:

• Right to know what categories of personal information we collect;
• Right to request deletion;
• Right to correct inaccurate data;
• Right to opt-out of data “sharing” for advertising.

Do Not Sell / Do Not Share

We do not sell personal data for monetary value.

However, the use of common advertising technologies (such as Meta Pixel and Google Ads) may be considered “sharing” under CPRA for cross-context behavioural advertising.

You may opt-out at any time via:

• our Cookie Settings;
• browser settings supporting Global Privacy Control (GPC) signals.

We honour GPC signals as an opt-out preference.

 

18. Updates to This Policy

We may update this Privacy Policy to reflect legal or operational changes.
The current version will always be available on this page.

 

19. Contact

If you have any questions or GDPR/CCPA requests, please contact us at:
info@volumenzeit.com

We respond promptly and in accordance with statutory requirements.

 

 

Last updated: 11th of December 2025