Burton Sportartikel GmbH takes data protection issues very seriously and collects, processes and uses customers personal data exclusively in accordance with the principles described below, taking into account the applicable data protection laws, in particular the Regulation (EU) 2016/679 (GDPR).
1.1 – The body responsible for operating Burton.com, as well as for collecting, processing and using your personal data in accordance with the applicable data protection provisions is Burton Sportartikel GmbH, Hallerstraße 111, 6020 Innsbruck, Austria.
COLLECTION AND STORAGE OF PERSONAL DATA
2.1 – The term "personal data" refers to all information relating to an identified or identifiable physical person. This includes, for example, your name, telephone number, postal address and e-mail address.
2.2 – Personal data, as defined in the applicable data protection provisions, also include information concerning your use of Burton.com. By visiting this website, you give your conclusive consent (Art. 6 (1) lit a GDPR) to the short-term storage of the connection data of the requesting computer (IP address), the pages that you visit on our Website, the date and length of your visit, the identification data of the type of browser and operating system used, the website from which you visit us, the content of your shopping cart in case of a potential purchase and the length of time until the order is placed. This is necessary for the provision of the contents of the website. Your IP address is deleted after use of the website has ended. We do not utilize User Data to determine your identity, nor do we combine them with other personal data stored by us. We use this data for statistical purposes only.
2.3– Apart from the User Data described in paragraph (2.2) above, we will only collect personal data if you voluntarily share them with us. The following data, in particular, are collected when you place an order or open a customer account: name, postal address, e-mail address and telephone number. Payment information, such as your bank details or credit card number, is also collected when you place an order. See more details under “Data Protection of Payments and Online Orders”.
2.4 – The personal data shared by you (name, postal address, e-mail address, telephone number, bank details, credit card number) are stored lawfully and as specified by the applicable data protection provisions. Your data will, of course, be treated confidentially.
YOUR RIGHTS RELATING TO YOUR PERSONAL DATA
3.1 – Provided that the lawfulness for the specific data processing is based on your consent, such consent may be revoked (in full or in part) at any time by sending an e-mail to email@example.com. This may affect the functionality of the content offered on this Website.
3.2 – Furthermore, you have the right to obtain information on personal data concerning yourself, the right to data portability, the right to have personal data rectified or deleted and the right to have the processing of your personal data restricted or to object to your personal data being processed. You may exercise these rights by sending an email to firstname.lastname@example.org.
3.3 – Finally, you have the right to lodge a complaint with the Austrian Data Protection Authority (Hohenstaufengasse 3, 1010 Vienna, email@example.com, www.dsb.gv.at).
CUSTOMER ACCOUNT AND ONLINE ORDERS
4.1 – The following data are collected when you open a customer account or place an order: name, postal address, e-mail address and telephone number (eventually also date of birth). Payment information, such as your bank details or credit card number, is also collected when you place an order.
4.2 – During the ordering process, your personal information is encoded via “Secure Socket Layer” (SSL) and transferred through the Internet (excluding address transfer within newsletter subscriptions). We use a highly secure 128-Bit encoding system.
4.3 – Credit card details are not saved, but directly received and processed by our payment provider 'Adyen' and our fraud/id security provider ‘Riskified’. No payment or order made on this website is subjected to a credit check or scoring system unless you are explicitly informed of this during checkout when selecting the payment method. This website operates on the Salesforce platform and is 100% PCI Compliant, this means that at no point during the order process or post order process are credit card details or bank account numbers saved or held by the operator.
4.4 – We use both technical and organizational measures to secure our website and systems against data loss, destruction, access, manipulation or distribution by unauthorized persons. Access to your customer account is only possible by entering your personal password. Please keep your login details confidential at all times and always close your browser window once you have finished communicating with us, especially if you are using a shared computer.
4.5 – Your name, postal address, e-mail address and telephone number (and eventually date of birth) will be stored for the purpose of fulfilling the contract or for pre-contractual purposes (Art. 6 (1) lit. b GDPR).
4.6 – We store the personal data collected after it has been processed and delete it not later than 40 months after the contract is fulfilled and/or you delete your customer account.
4.7 – In the course of this data processing, we will forward the personal data collected to• Adyen • Riskified • Sailthru • RetailPro • UPS • DPD
CHILDRENS DATA PROTECTION
5.1 – Children under the Age of 13, Read This: Burton is committed to protecting the online privacy of children. In accordance with the Children's Online Privacy Protection Act, we will not knowingly collect any information from children under the age of 13. Burton.com does not sell products for purchase by children. We sell children's products for purchase by adults.
5.2 – Children Under the Age of 16, Read This: Sorry kids, but if you are under 16, you may shop at burton.com only with the involvement of a parent or guardian.
6.1 – By registering for the Burton Newsletter, you expressly authorize us by giving your consent to use your e-mail address (including metadata) for internal advertising purposes (Art. 6 (1) lit. a GDPR). You can object the delivery of the newsletter and the use of your e-mail address for advertising purposes with prospective effect at any time by clicking on the link included in the newsletter or in the promotional e-mails or via e-mail to firstname.lastname@example.org. We will also notify you of this right of objection separately in the e-mail that accompanies our newsletter and in all other promotional e-mails.
SOCIAL PLUGINSWe use so called social media plug-ins on this website. When visiting this website, the system automatically sets up a connection with the social media and forwards data to the social media network (e.g. IP-address, visit of website etc). This data transmission takes place without any action and beyond the responsibility of the operator and only in case you are logged into one of the following social media networks. No data will be transmitted if you are logged out. The automatically transmitted data will only be used by the operator of the social media network, not by the operator of this website.
8.3 – Youtube Plug-Ins We use features on this website from YouTube, a video service, YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. By accessing pages of our website that have integrated YouTube videos, data is transmitted to YouTube, stored and evaluated. If you have a YouTube account and you're signed in, it will be associated with your personal account and the data stored in it. What data Google collects and how it uses this information can be found here.
8.6 – Google Maps Plug-Ins We use Google Maps from Google Inc. (1600 Amphitheater Parkway Mountain View, CA 94043, USA) on our website. By using the features of this map, data will be transmitted to Google. What data Google collects and how it uses this information can be found here.
8.7 – Facebook Pixel We use on this website the Facebook Pixel of Facebook, a social media network of the company Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2 Ireland. The code implemented on this page can evaluate the behavior of visitors who have come to this website from a Facebook ad. This can be used to improve Facebook ads and this information is collected and stored by Facebook. The collected data is not visible to us but can only be used within the scope of advertising advertisements. The use of the Facebook pixel code also sets cookies. By using the Facebook pixel, the visit to this website will be communicated to Facebook, so that visitors get to see matching ads on Facebook. If you have a Facebook account and are logged in, the visit to this website will be associated with your Facebook user account. How Facebook uses this pixel for advertising campaigns can be read here. If you’re signed in to your Facebook account, you can change your ad settings here. Click here to manage your preferences for usage-based online advertising. You can disable or enable many providers at once or make settings for individual providers. More information about Facebook's data policy can be found here.
LINKS TO OTHER WEBSITES
10.1 – On our website, you will also find links to other websites. We specifically do not hold any kind of liability for the accuracy, completeness, legality, objectivity and timeliness of the contents of these websites.
QUESTIONS AND FEEDBACK
If you contact us with a privacy complaint it will be assessed with the aim of resolving the issue in a timely and effective manner.