Data Controller
Frank Bier
Feldstr. 76
66787 Wadgassen
Email: kontakt@birra-rizzuto.de

We appreciate your interest in our online shop. Protecting your privacy is very important to us. Below you will find detailed information about how we handle your data.

1. Access Data and Hosting

You can visit our websites without disclosing any personal information. Each time a page is requested, the web server automatically logs certain data (a “server logfile”), such as the name of the requested file, your IP address, the date and time of the request, the amount of data transferred, and the requesting provider. These access data are used solely to ensure the uninterrupted operation of the site and to improve our offering, in reliance on our legitimate interest to present our services correctly in accordance with Art. 6 (1) sentence 1 lit. f GDPR. Access data are retained only as long as necessary for these purposes.

The services for hosting and displaying the website are provided in part by our service providers on our behalf. Unless otherwise stated in this privacy policy, all access data and any data you enter into forms on this website are processed on their servers. If you have questions about our service providers or the basis of our cooperation, please use the contact details given in this policy. Our providers are located in Israel—where the European Commission has recognized an adequate level of data protection—and may also use servers in the USA, South Korea, Taiwan, and other non-EU/EEA countries without an adequacy decision, in which case our cooperation is based on the European Commission’s standard contractual clauses.

2. Data Processing for Contractual Fulfillment and Contact

2.1 Contact Requests

When you contact us (e.g., via contact form or email), we collect the personal data you voluntarily provide in order to process your inquiry, pursuant to Art. 6 (1) sentence 1 lit. b GDPR. Mandatory fields are marked as such because we need that data to handle your request. Once your inquiry has been fully processed, we delete your data unless you have consented to further use (Art. 6 (1) sentence 1 lit. a GDPR) or we retain it for another legally permitted purpose described here.

2.2 Live Chat Tool “Ascend by Wix”

If you use our live chat tool, any data you voluntarily enter (name, email address, message) is processed to answer your inquiry as part of contract execution (Art. 6 (1) sentence 1 lit. b GDPR). In addition, it serves our legitimate interest in effective customer communication (Art. 6 (1) sentence 1 lit. f GDPR). These data are then deleted. The tool is provided by Wix.com Ltd., 40 Namal Tel Aviv St., Tel Aviv 6350671, Israel, acting on our behalf and using servers in Israel (adequacy decision) as well as in the USA, South Korea, Taiwan, and other non-EU/EEA countries under standard contractual clauses.

3. Data Processing for Shipping

To fulfill the contract (Art. 6 (1) sentence 1 lit. b GDPR), we forward the data necessary for delivery to the shipping provider.

Data Sharing for Delivery Notices

If you have expressly consented during or after your order (Art. 6 (1) sentence 1 lit. a GDPR), we will share your email address and telephone number with the shipping provider so they can contact you to arrange delivery. You may withdraw this consent at any time by contacting us or the shipping provider; upon withdrawal, we delete your data unless you have agreed to another use or we are permitted to retain it by law.

Shipping Provider:
DHL Paket GmbH
Sträßchensweg 10
53113 Bonn
Germany

4. Data Processing for Payment

We work with technical service providers, credit institutions, and payment service providers for processing payments.

4.1 Transaction Processing

Depending on the chosen method of payment, we transmit the data required to process the transaction to our technical service providers (acting under contract), the credit institutions, or the payment service provider, as necessary to perform the contract (Art. 6 (1) sentence 1 lit. b GDPR). Some providers collect these data directly on their websites or via technical integration; their privacy policies then apply.

4.2 Fraud Prevention and Payment Optimization

If required, we provide additional data to our processors to help prevent fraud and optimize our payment processes (e.g., invoicing, handling disputed payments, accounting), based on our legitimate interest in securing operations and ensuring efficient payment management (Art. 6 (1) sentence 1 lit. f GDPR).

5. Email Marketing

5.1 Newsletter Subscription and Tracking

If you subscribe to our newsletter, we use the data provided to send you regular newsletters based on your consent (Art. 6 (1) sentence 1 lit. a GDPR). You may unsubscribe at any time via the link in the newsletter or by email. After unsubscribing, we delete your address unless you have consented to another use or a legal exception applies.

We analyze your interaction with the newsletter (open rates, click rates) to improve future campaigns. Emails include one-pixel technologies (web beacons/tracking pixels) that record the referrer URL, date/time of access, browser type, IP address, email address, subscription/confirmation timestamps, and an individual ID. Links in the newsletter may also carry this ID. You can opt out of tracking by unsubscribing.

5.2 Email Promotions Without Signup and Your Right to Object

If we receive your email in connection with a sale and you have not objected, we may send you offers for similar products on the basis of our legitimate interest in direct marketing (Art. 6 (1) sentence 1 lit. f GDPR and § 7 (3) UWG). You may object at any time by emailing us or via the link in the promotional email. After objection, we delete your address unless you have consented to another use or a legal exception applies.

6. Cookies and Other Technologies

6.1 General Information

To make our website more attractive and to enable certain functions (e.g., shopping cart), we use technologies including cookies—small text files stored on your device. Some cookies expire at the end of the browser session (session cookies); others persist to recognize your browser on subsequent visits (persistent cookies).

Strictly necessary technologies for a service expressly requested by you do not require consent. Non-essential functions do require consent; without it, parts of the site may not be fully operational. You may withdraw your consent at any time via your browser settings.

These technologies collect IP address, visit time, device/browser information, and usage data (e.g., cart contents) based on our legitimate interest in optimized service presentation (Art. 6 (1) sentence 1 lit. f GDPR). We also use them to meet legal obligations (proof of consent) and for analytics and marketing; further details and legal bases appear in the following sections.

Cookie settings for your browser can be found here:

• Microsoft Edge™

• Safari™

• Chrome™

• Firefox™

• Opera™

6.2 Use of the Wix Consent Manager Tool

We use the Wix Consent Manager to inform you about cookies and technologies, to obtain and record your consent (Art. 6 (1) sentence 1 lit. c and Art. 7 (1) GDPR). Wix, acting on our behalf, stores your IP address, date/time of consent, browser information, and consent status, and sets a cookie containing this data. Your data are deleted once they are no longer needed, unless you have consented to a further use or a legal exception applies. Wix uses servers in Israel (adequacy decision) and, where applicable, non-EU/EEA countries under standard contractual clauses.

7. Social Media

7.1 Social Plugins from Facebook (Meta) and Instagram (Meta)

On our website, social buttons are embedded as HTML links only; no connection to the providers’ servers occurs unless you click a button. Clicking opens the respective social network in a new tab, where you can interact (like, share).

7.2 Our Presence on Facebook and Instagram

If you have consented (Art. 6 (1) sentence 1 lit. a GDPR), visiting our social media pages automatically generates pseudonymized usage profiles via cookies and related technologies, for market research and advertising purposes. For full details, consult the privacy notices of Meta Platforms Ireland Ltd. (4 Grand Canal Square, Dublin 2, Ireland) and Meta Platforms, Inc. (1 Hacker Way, Menlo Park, CA 94025, USA). A joint controller agreement under Art. 26 GDPR governs our cooperation.

8. Contact Options and Your Rights

8.1 Your Rights

Under the GDPR, you have:

• Art. 15 Right of access to your personal data;

• Art. 16 Right to rectification of incorrect data;

• Art. 17 Right to erasure (“right to be forgotten”), unless further processing is required for freedom of expression, legal obligations, public interest, or legal claims;

• Art. 18 Right to restriction of processing;

• Art. 20 Right to data portability;

• Art. 21 Right to object, particularly to direct marketing;

• Art. 77 Right to lodge a complaint with a supervisory authority.

8.2 How to Contact Us

To exercise your rights (access, rectification, erasure, restriction, objection, consent withdrawal), please contact us using the details in our legal notice.