PRIVACY POLICY

1. INFORMATION ON THE COLLECTION OF PERSONAL DATA AND CONTACT DETAILS OF THE CONTROLLER

1.1 We are pleased that you are visiting our website and thank you for your interest. Below, we inform you about how your personal data is handled when you use our website. Personal data refers to any information that can be used to personally identify you.

1.2 The controller responsible for data processing on this website, in accordance with the General Data Protection Regulation (GDPR), is Nue & Noir. The controller is the natural or legal person who, alone or jointly with others, determines the purposes and means of processing personal data.

1.3 This website uses SSL/TLS encryption for security reasons and to protect the transmission of personal data and other confidential content (such as orders or inquiries to the controller). You can recognize a secure connection by the "https://" prefix and the padlock symbol in your browser bar.

2) DATA COLLECTION WHEN VISITING OUR WEBSITE

If you use our website for informational purposes only (i.e., you do not register or transmit information), we collect only the data your browser sends to our server (so-called "server logs"). This includes:

  • The website visited

  • Date and time of access

  • Amount of data sent (in bytes)

  • Referrer URL (the page from which you arrived)

  • Browser used

  • Operating system used

  • IP address used (if necessary, in anonymized form)

Processing is carried out pursuant to Art. 6(1)(f) GDPR, based on our legitimate interest in improving the stability and functionality of our website. The data will not be disclosed or used otherwise. However, we reserve the right to check server logs subsequently if there are indications of unlawful use.

3) COOKIES

To enhance your browsing experience and enable specific functions, we use cookies on various pages. These are small text files stored on your device. Some cookies are deleted when the session ends (session cookies), while others remain on your device and allow us to recognize your browser on subsequent visits (persistent cookies).

Cookies may collect and process information such as browser details, location data, and IP addresses. Persistent cookies are deleted automatically after a specific period, which varies depending on the cookie.

Some cookies facilitate the shopping process (e.g., saving items in your cart). If cookies process personal data, this is done under Art. 6(1)(b) GDPR (contract performance) or Art. 6(1)(f) GDPR (legitimate interest in optimal website functionality).

We may also work with advertising partners who store third-party cookies on your device. If this happens, you will be informed specifically about this use.

You can configure your browser to notify you when cookies are being set and choose whether to accept them. The help sections of popular browsers provide instructions for cookie settings:

Please note: if you disable cookies, the functionality of the website may be limited.

4) CONTACTING US

If you contact us (e.g., via contact form or email), we collect personal data. The data collected is visible in the form fields. This data is used solely to respond to your inquiry and manage it technically. The legal basis is Art. 6(1)(f) GDPR. If the purpose is to enter into a contract, Art. 6(1)(b) GDPR also applies. The data is deleted once your inquiry is resolved, unless legal retention obligations apply.

5) DATA PROCESSING FOR CUSTOMER ACCOUNTS AND CONTRACT MANAGEMENT

According to Art. 6(1)(b) GDPR, we collect and process your personal data to perform a contract or open a customer account. The data required is shown in the respective forms. You can request deletion of your account at any time. After fulfillment of the contract or deletion of your account, we retain your data only as required by tax and commercial retention periods, and delete it thereafter, unless further use is permitted or you have given consent.

6) USE OF YOUR DATA FOR DIRECT MARKETING

6.1 Newsletter Subscription

If you subscribe to our email newsletter, we will regularly send you updates on our offers. Only your email address is required. Additional data is optional and used for personalization. We use a double opt-in process for subscriptions: you will receive a confirmation email with a link to verify your consent.

By clicking the confirmation link, you give consent under Art. 6(1)(a) GDPR. We also record your IP address and time of subscription to prevent misuse. You may unsubscribe at any time via the link in the newsletter or by contacting us. Upon unsubscribing, your email address will be deleted unless legal grounds or further consent allow continued use.

6.2 Email Marketing to Existing Customers

If you have provided your email when purchasing products or services, we may use it to send offers related to similar products/services. This is based on our legitimate interest in direct marketing (Art. 6(1)(f) GDPR). You may object at any time, at no cost other than transmission, by contacting us.

7) DATA PROCESSING FOR ORDER HANDLING

7.1 We share personal data with delivery companies and payment institutions only as needed to fulfill your order, per Art. 6(1)(b) GDPR.

7.2 Use of Payment Providers:

PayPal
If you choose PayPal (or related options like PayPal Credit, Direct Debit, or Installment Payment), your payment data is transmitted to PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg.

This is done under Art. 6(1)(b) GDPR and only to the extent necessary to process payment.

PayPal may perform a credit check for certain payment methods, pursuant to Art. 6(1)(f) GDPR. For this, your payment data may be shared with credit agencies. Credit checks may include “scores” based on mathematical-statistical methods, which may use address data.

For full details, refer to PayPal’s Privacy Policy: PayPal Privacy Policy
You can object to this processing by contacting PayPal. However, PayPal may still process your data if necessary to fulfill the contract.

SOFORT

If you choose the "SOFORT" payment method, the payment is processed via the payment service provider SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany (hereinafter referred to as "SOFORT"), to whom we transmit the information you provided during the order process along with details of your purchase in accordance with Art. 6(1)(b) of the GDPR. SOFORT is part of the Klarna Group (Klarna Bank AB (publ), Sveavägen 46, 11134 Stockholm, Sweden). Your data is transmitted exclusively for the purpose of processing the payment through SOFORT and only to the extent necessary for this purpose.

You can find more information about SOFORT’s privacy policy here: SOFORT Privacy Policy.

8) REVIEW REMINDERS

Personal Review Reminder (not via customer review system)

We use your email address to send you a one-time reminder to leave a review of your order for the review system we use—provided you have given us your express consent to do so during or after your order, pursuant to Art. 6(1)(a) of the GDPR.
You may revoke your consent at any time by sending a message to the data controller.

9) USE OF SOCIAL MEDIA: SOCIAL PLUGINS

9.1 Facebook Plugin with Shariff Solution
Additional customs clearance fees and/or import duties may apply and are the customer’s responsibility.

Our website uses so-called social plugins ("plugins") from the social network Facebook, operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA ("Facebook").

To enhance data protection when visiting our site, these buttons are not directly embedded as plugins but are implemented via an HTML link. This ensures that a connection to Facebook’s servers is not immediately established upon accessing a page on our website that contains such buttons. Only when you click the button will a new browser window open and load the Facebook page where you can interact with Facebook plugins (possibly after logging in).

Facebook Inc. is certified under the US-EU Privacy Shield agreement, ensuring compliance with European data protection laws.

For more information about Facebook’s data processing, please refer to: https://www.facebook.com/policy.php.

9.2 Google+ Plugin with Shariff Solution

We use social plugins from the Google+ network, operated by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google").

As with Facebook, the buttons are embedded via HTML links for enhanced data protection. Clicking the button opens a new browser window that loads the Google+ page, where you can interact with its plugins after logging in.

Google LLC is certified under the US-EU Privacy Shield agreement.

Privacy policy: https://www.google.com/intl/de/policies/privacy/

9.3 Instagram Plugin with Shariff Solution

We use social plugins from Instagram, operated by Instagram LLC, 1601 Willow Rd, Menlo Park, CA 94025, USA ("Instagram").

As with other plugins, buttons are included via HTML links. Clicking them opens a new window where you can interact with Instagram plugins.

Instagram LLC is also certified under the US-EU Privacy Shield.

Privacy policy: https://help.instagram.com/155833707900388/

10) ONLINE MARKETING

10.1 DoubleClick by Google

This website uses DoubleClick by Google, an online marketing tool from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("DoubleClick").

DoubleClick uses cookies to display relevant ads, enhance campaign performance reporting, or prevent repeated ads. An ID cookie helps track which ads have been shown in which browser. Data processing is based on our legitimate interest in optimizing our website’s advertising (Art. 6(1)(f) GDPR).

DoubleClick may also track "conversions" (e.g., a purchase made after viewing an ad). Google states that DoubleClick cookies do not contain personally identifiable information.

Due to this marketing tool, your browser connects directly to Google’s server. We have no control over how Google processes the data. If you're signed into a Google service, the visit might be linked to your Google account. Even if not signed in, your IP address may be recorded.

You can block this tracking by disabling cookies from www.googleadservices.com or adjusting cookie settings via the Digital Advertising Alliance (www.aboutads.info). Please note this may affect website functionality.

Google LLC is certified under the US-EU Privacy Shield.

DoubleClick privacy info: https://www.google.de/policies/privacy/

10.2 Use of Google AdWords Conversion Tracking

We use Google AdWords and Google Conversion Tracking from Google LLC to promote our products through ads on external websites. We analyze ad performance to show you relevant ads and assess advertising effectiveness.

A conversion tracking cookie is placed when a user clicks on a Google ad. These cookies expire after 30 days and are not used for personal identification. If a user visits certain pages within the validity period, Google and we can track ad-related activity. Each AdWords customer receives a different cookie, so data cannot be tracked across websites.

You can opt out by disabling cookies in your browser or via the plugin here: https://www.google.com/settings/ads/plugin?hl=de

Google LLC is certified under the US-EU Privacy Shield.

Privacy policy: https://www.google.de/policies/privacy/

11) WEB ANALYTICS SERVICES

Google (Universal) Analytics

This website uses Google Analytics, a web analytics service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Google Analytics uses so-called “cookies,” text files that are stored on your computer and allow an analysis of your use of the website. The information generated by the cookie about your use of the website (including the abbreviated IP address) is usually transmitted to a Google server in the USA and stored there.

This website uses Google Analytics exclusively with the extension "_anonymizeIp()", which ensures the anonymization of your IP address by shortening it, thus preventing direct personal identification. With this extension, your IP address will be shortened by Google within the member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. In such exceptional cases, the data is processed pursuant to Art. 6(1)(f) GDPR, based on our legitimate interest in statistical analysis of user behavior for optimization and marketing purposes.

On our behalf, Google uses this information to evaluate your use of the website, compile reports on website activity, and provide other services related to website usage and internet usage. The IP address transmitted by your browser within the framework of Google Analytics is not merged with other Google data.

You can prevent the storage of cookies by adjusting your browser settings. However, please note that you may not be able to use all features of this website to their full extent. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) as well as the processing of this data by Google by downloading and installing the browser plug-in available at the following link:
https://tools.google.com/dlpage/gaoptout?hl=en

As an alternative to the browser plugin or for browsers on mobile devices, you can click the following link to set an opt-out cookie, which will prevent the collection of data by Google Analytics on this website in the future (this opt-out cookie only works in this browser and only for this domain; if you delete your cookies in this browser, you will need to click this link again):
Disable Google Analytics

Google LLC, based in the USA, is certified under the EU-US Privacy Shield framework, which ensures compliance with the level of data protection applicable in the EU.

For more information on Universal Analytics, visit:
https://support.google.com/analytics/answer/2838718?hl=en&ref_topic=6010376

12) RETARGETING / REMARKETING / RECOMMENDED ADVERTISING

Facebook Custom Audiences via Pixel Method

This website uses the “Facebook Pixel” of Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA (“Facebook”). With your explicit consent, user behavior can be tracked after viewing or clicking on a Facebook ad. This process helps evaluate the effectiveness of Facebook ads for statistical and market research purposes and can help optimize future advertising activities.

The data collected is anonymous to us and does not allow us to identify users. However, the data is stored and processed by Facebook, which may link it to your Facebook profile and use it for its own advertising purposes, as described in Facebook’s Data Policy:
https://www.facebook.com/about/privacy/

You can allow Facebook and its partners to display ads on and off Facebook. A cookie may be stored on your device for these purposes. Data processing is carried out solely with your explicit consent pursuant to Art. 6(1)(a) GDPR.

Consent for the use of Facebook Pixel may only be given by users over 13 years of age. If you are younger, please ask your parent or legal guardian for permission.

Facebook Inc., based in the USA, is certified under the EU-US Privacy Shield framework, which ensures compliance with EU data protection standards.

To disable the use of cookies on your computer, you can configure your browser settings to block cookies or delete existing cookies. Disabling all cookies may limit the functionality of our website. You can also disable the use of cookies by third parties such as Facebook on the Digital Advertising Alliance website:
https://www.aboutads.info/choices/

Google AdWords Remarketing

Our website uses the functions of Google AdWords Remarketing to advertise this site in Google search results and on third-party websites. The provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). For this purpose, Google places a cookie in your browser, which enables interest-based advertising based on a pseudonymous cookie ID and your browsing behavior.

Processing is based on our legitimate interest in optimally marketing our website pursuant to Art. 6(1)(f) GDPR.

Further data processing will only take place if you have consented to Google linking your browsing history with your Google account and allowing personalized ads. If you are logged into your Google account during the visit to our website, Google will use your data in combination with Google Analytics data to create and define cross-device remarketing audience lists. Your personal data will be temporarily linked with Google Analytics data to form audience groups.

You can permanently disable personalized ads by downloading and installing the browser plugin available at the following link:
https://www.google.com/settings/ads/onweb/

Alternatively, you can learn more about cookies and set your preferences via the Digital Advertising Alliance site:
https://www.aboutads.info/

Lastly, you can configure your browser to notify you before accepting cookies and allow or refuse them on a case-by-case basis. Please note that if you disable cookies, some website features may be limited.

Google LLC is certified under the EU-US Privacy Shield framework, ensuring an adequate level of data protection.

More information about Google’s advertising and privacy policies is available here:
https://www.google.com/policies/technologies/ads/

13) DATA SUBJECT RIGHTS

13.1 Under applicable data protection laws, you have the following rights regarding the processing of your personal data by the data controller, which we summarize below:

  • Right of access (Art. 15 GDPR): You have the right to obtain information about the personal data we process about you, including processing purposes, categories of data, recipients, retention periods, and your rights.

  • Right to rectification (Art. 16 GDPR): You have the right to request the immediate correction of inaccurate or incomplete personal data.

  • Right to erasure (Art. 17 GDPR): You may request the deletion of your personal data if the conditions of Art. 17(1) GDPR are met. This does not apply where processing is necessary, for example, for freedom of expression, legal compliance, public interest, or legal defense.

  • Right to restriction of processing (Art. 18 GDPR): You may request the restriction of data processing under specific conditions, such as when the accuracy of data is contested, processing is unlawful, or you need the data for legal claims.

  • Right to notification (Art. 19 GDPR): If you have exercised your rights to rectification, erasure, or restriction, we are obliged to inform all recipients to whom your personal data has been disclosed, unless this proves impossible or involves disproportionate effort.

  • Right to data portability (Art. 20 GDPR): You have the right to receive the personal data you provided to us in a structured, commonly used, and machine-readable format, or to request the transfer to another controller, where technically feasible.

  • Right to withdraw consent (Art. 7(3) GDPR): You may withdraw your consent at any time with effect for the future. If you do, we will stop processing the affected data unless we have another legal basis for the processing.

  • Right to lodge a complaint (Art. 77 GDPR): If you believe your data is being processed in violation of the GDPR, you have the right to lodge a complaint with a supervisory authority in your country of residence, workplace, or the place of the alleged infringement.

13.2 RIGHT TO OBJECT

IF WE PROCESS YOUR PERSONAL DATA BASED ON A LEGITIMATE INTEREST, YOU HAVE THE RIGHT TO OBJECT TO SUCH PROCESSING AT ANY TIME FOR REASONS RELATING TO YOUR PARTICULAR SITUATION.

IF YOU OBJECT, WE WILL STOP PROCESSING YOUR DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS THAT OVERRIDE YOUR INTERESTS, RIGHTS, AND FREEDOMS, OR IF PROCESSING SERVES THE ESTABLISHMENT, EXERCISE, OR DEFENSE OF LEGAL CLAIMS.

IF YOUR DATA IS PROCESSED FOR DIRECT MARKETING PURPOSES, YOU MAY OBJECT TO THE PROCESSING AT ANY TIME. IF YOU DO, WE WILL STOP PROCESSING YOUR DATA FOR MARKETING PURPOSES IMMEDIATELY.

14) DATA RETENTION PERIOD

The retention period of personal data is based on the applicable statutory retention periods (e.g., commercial and tax laws). After the expiration of these periods, the corresponding data will be routinely deleted, unless it is still required for the fulfillment or initiation of a contract or if there is a legitimate interest in retaining it.