Privacy Policy

OWU Cycling –www.owu-cycling.com

1. Controller

Responsible for data processing on this website is:

OWU (Kleingewerbe)
Jaqueline Horstmann
Pütt, Heinsberg 52525
Email: owucycling@gmail.com

2. General Information

We process personal data in accordance with the GDPR and the German TTDSG.

Personal data is any information relating to an identified or identifiable person.

3. Hosting

This website is hosted by Squarespace.

Squarespace processes technical data (e.g. IP address, browser type, operating system, access time) to provide secure and stable website operation.

Data may be transferred to the United States. Squarespace uses Standard Contractual Clauses (SCCs) to ensure appropriate data protection safeguards.

Legal basis: Art. 6(1)(f) GDPR

4. Access Data (Server Log Files)

When visiting our website, the following data is automatically collected:

  • IP address

  • Date and time of access

  • Browser type and version

  • Operating system

  • Referrer URL

This data is required to ensure website security and functionality.

Legal basis: Art. 6(1)(f) GDPR

5. Cookies & Consent Management

We use cookies and similar technologies.

We use Cookiebot as our consent management platform.

Cookiebot ensures that:

  • Non-essential cookies are only activated after user consent

  • Users can accept, reject, or customize cookie categories

  • Consent is stored and documented in compliance with legal requirements

Legal basis:

  • Art. 6(1)(a) GDPR (consent)

  • §25 TTDSG (cookie consent requirement)

You can withdraw or change your consent at any time via the cookie settings on our website.

6. Contact (Email Communication)

If you contact us via email, we process your data (e.g. name, email address, message) to handle your request.

Legal basis:

  • Art. 6(1)(b) GDPR (contractual / pre-contractual communication)

  • Art. 6(1)(f) GDPR (legitimate interest)

7. Orders & Customer Data

When placing an order, we process:

  • Name

  • Billing and shipping address

  • Email address

  • Order details

This is necessary for contract fulfillment.

Legal basis: Art. 6(1)(b) GDPR

8. Payment Providers

We use external payment service providers for secure payment processing.

Depending on the payment method, data may be shared with:

  • PayPal

  • Visa

  • Mastercard

  • Maestro

  • Apple Pay

These providers process payment data independently as separate controllers.

Legal basis: Art. 6(1)(b) GDPR

9. International Data Transfers

As we operate worldwide, personal data may be transferred outside the European Union.

Where required, such transfers are protected using Standard Contractual Clauses (SCCs) or equivalent safeguards.

10. Data Retention

We store personal data only as long as necessary:

  • Order data: up to 10 years (legal tax/accounting requirements)

  • Customer inquiries: until fully resolved

  • Consent data (Cookiebot): as long as required for compliance documentation

11. Your Rights

Under GDPR, you have the right to:

  • Access your data

  • Rectify incorrect data

  • Request deletion

  • Restrict processing

  • Data portability

  • Withdraw consent

You also have the right to file a complaint with a supervisory authority.

12. Data Security

We use appropriate technical and organizational security measures to protect your data against unauthorized access, loss, or misuse.

13. Changes to This Privacy Policy

We may update this privacy policy at any time to reflect legal or operational changes.