Privacy Policy

Valid from: April 25, 2025
mekede.de
MN Trading GmbH

1. Person responsible and data protection officer

1.1 Person responsible

The controller responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is:

MN Trading GmbH
Main Street 104
76706 Dettenheim
Germany

Email: support@mekede.de

1.2 Contact for data protection questions

If you have any questions about data protection, you can contact us at any time at the above address or by email at support@mekede.de.

2. General information on data processing

2.1 Scope of processing of personal data

We generally only process our users' personal data to the extent necessary to provide a functional website and our content and services. We generally only process our users' personal data with the user's consent.

2.2 Legal basis

The legal basis for the processing of personal data is:

  • Art. 6 (1) (a) GDPR - Consent
  • Art. 6 (1) (b) GDPR - Contractual performance
  • Art. 6 (1) (c) GDPR - legal obligation
  • Art. 6 (1) (f) GDPR - legitimate interests

3. Data collection when visiting the website

3.1 Server log files

When you visit our website, the browser used on your device automatically sends information to our website server. This information is temporarily stored in a so-called log file.

The following information is collected:

  • IP address of the requesting computer
  • Date and time of access
  • Name and URL of the retrieved file
  • Website from which access is made (referrer URL)
  • Browser used and, if applicable, operating system
  • Name of your access provider

Legal basis: Art. 6 (1) (f) GDPR (legitimate interests)
Purpose: To ensure a smooth connection and comfortable use of our website as well as to evaluate system security and stability.
Storage period: The data will be deleted after 7 days.

4. Registration and customer account

4.1 Registration

Registration is required to use our online shop. During registration, we collect the following data:

Mandatory information:

  • Title, first and last name
  • E-mail address
  • password
  • Billing address
  • Date of birth (for age verification)

Optional information:

  • Different delivery address
  • Telephone number

Legal basis: Art. 6 (1) (b) GDPR (performance of contract)
Purpose: Provision of the customer account and processing of orders
Storage period: Until the customer account is deleted or after expiry of statutory retention periods

5. Order processing

5.1 Order data

To process your order we process the following data:

Ordering information:

  • Order and invoice data
  • Payment information
  • Delivery address
  • Order history

Legal basis: Art. 6 (1) (b) GDPR (performance of contract) and Art. 6 (1) (c) GDPR (legal obligation)
Purpose: Contract processing, invoicing, warranty
Storage period: 10 years in accordance with commercial and tax law retention periods

5.2 Payment processing

Depending on the payment method you choose, your payment details will be passed on to the following payment service providers:

  • Credit card providers
  • PayPal
  • Banks

The data transfer is encrypted and is used exclusively for payment processing.

6. Cookies and similar technologies

6.1 What are cookies?

Cookies are small text files that are stored on your device when you visit a website. They allow us to recognize you on your next visit.

6.2 Cookie categories

Technically necessary cookies:

  • Session ID for the shopping cart
  • Registration status
  • Language settings
  • Legal basis: Art. 6 (1) (f) GDPR (legitimate interests)

Analysis cookies:

  • Google Analytics (only with your consent)
  • Legal basis: Art. 6 (1) (a) GDPR (consent)

Marketing cookies:

  • Advertising networks (only with your consent)
  • Legal basis: Art. 6 (1) (a) GDPR (consent)

6.3 Cookie settings

You can adjust your cookie settings at any time via our cookie banner or in your browser settings.

7. Sharing of data

7.1 Shipping service provider

For the delivery of your orders, we pass on your address details to commissioned shipping companies.

7.2 Payment service providers

We work with external payment service providers to process payments.

7.3 No disclosure to third parties

Your personal data will not be transferred to third parties unless:

  • You have expressly consented
  • the transfer is necessary to fulfil legal obligations
  • the transfer is necessary to enforce our rights

8. International data transfer

8.1 Third countries

If we transfer data to countries outside the EU/EEA, this will only occur:

  • If an adequacy decision is taken by the EU Commission
  • If appropriate guarantees are in place (e.g. EU standard contractual clauses)
  • With your express consent

9. Storage period

We only store your personal data for as long as necessary for the respective purposes:

  • Contract data: 10 years (commercial and tax retention periods)
  • Marketing consent: Until revoked
  • Server logs: 7 days
  • Customer account: Until deleted by the user

10. Your rights as a data subject

10.1 Right to information (Art. 15 GDPR)

You have the right to request confirmation from us as to whether personal data concerning you is being processed.

10.2 Right to rectification (Art. 16 GDPR)

You have the right to request that we immediately correct any inaccurate personal data concerning you.

10.3 Right to erasure (Art. 17 GDPR)

You have the right to request that we delete personal data concerning you immediately.

10.4 Right to restriction (Art. 18 GDPR)

You have the right to request that we restrict processing.

10.5 Right to data portability (Article 20 GDPR)

You have the right to receive the personal data concerning you in a structured, commonly used and machine-readable format.

10.6 Right of objection (Art. 21 GDPR)

You have the right to object at any time to the processing of personal data concerning you.

10.7 Revocation of consent (Art. 7 GDPR)

If the processing is based on consent, you have the right to revoke this consent at any time.

11. Data security

11.1 Technical measures

We use appropriate technical and organizational security measures:

  • SSL/TLS encryption
  • Firewalls and intrusion detection systems
  • Regular security updates
  • Access control and authentication

11.2 Organizational measures

  • Employee training
  • Confidentiality agreements
  • Regular security audits

12. Newsletter (if applicable)

12.1 Newsletter registration

We need your email address to send you our newsletter. Registration is done using the double opt-in process.

Legal basis: Art. 6 (1) (a) GDPR (consent)
Purpose: Sending product information and offers
Unsubscribe: At any time via the unsubscribe link in the newsletter or by email

13. Social media and external content

13.1 Social Media Plug-ins

We only use social media plugins with your express consent. These are disabled by default (2-click solution).

13.2 External content

External content (Google Maps, YouTube videos) will only be loaded with your consent.

14. Minors

Our services are not directed at persons under the age of 18. We do not knowingly process personal data of minors without the consent of their legal guardians.

15. Changes to the Privacy Policy

We reserve the right to update this Privacy Policy to reflect changes in law or changes to the service. We will notify you of any significant changes.

16. Right to complain

You have the right to complain to a data protection supervisory authority about our processing of your personal data.

Competent supervisory authority:
The State Commissioner for Data Protection and Freedom of Information Baden-Württemberg
Königstraße 10a
70173 Stuttgart
Phone: 0711/61 55 41-0
Email: poststelle@lfdi.bwl.de

Contact:
MN Trading GmbH
Main Street 104
76706 Dettenheim
Germany
Email: support@mekede.de

As of: April 25, 2025