Free Shipping for Backpacks

Free & Easy Returns Policy

Privacy policy

Data protection information in accordance with Art. 13 GDPR
Name and address of the person responsible
The responsible body within the meaning of the General Data Protection Regulation (GDPR) and other data protection regulations is:

RS Vertriebs GmbH

Bauvereinstr. 42

90489 Nuremberg
Germany

Telephone: +491742475276
Email: radka@radkasillerova.com

Name and address of the data protection officer
The data protection officer of the person responsible is:

Jan Henrik Schneider

Pamier ring 15
74564 Crailsheim

Telephone: +4917661002168
Email: j.schneider@dsgvo-datenschutzexperte.de

General information on data processing
Legal basis for processing personal data
In accordance with Art. 13 GDPR, we will inform you of the legal basis for our data processing. If the legal basis is not specified in the data protection notice, the following applies:
The legal basis for obtaining consent is Article 6 Paragraph 1 Letter a in conjunction with Article 7 GDPR. The legal basis for processing to fulfill our services and carry out contractual measures as well as to answer inquiries is Article 6 (1) (b) GDPR. The legal basis for processing to fulfill our legal obligations is Article 6 (1) (c) GDPR. If the processing of your data is necessary to protect a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 Para. 1 lit. f GDPR serves as the legal basis for the processing. In the event that the vital interests of the data subject or another natural person require the processing of personal data, Article 6 (1) (d) GDPR serves as the legal basis.

Data deletion and storage period
We adhere to the principles of data minimization in accordance with Article 5 Paragraph 1 Letter c GDPR and storage limitation in accordance with Article 5 Paragraph 1 Letter e GDPR. We only store your personal data for as long as is necessary to achieve the purposes stated here or as required by the statutory retention periods. Once the respective purpose no longer applies or after these retention periods have expired, the relevant data will be deleted as quickly as possible.

External links
This website may contain links to third party websites or to other websites under our responsibility. If you follow a link to one of the websites outside of our responsibility, please note that these websites have their own data protection information. We assume no responsibility or liability for these external websites and their data protection information. Before using these websites, please check whether you agree to the data protection declarations there.

You can recognize external links either by their color being slightly different from the rest of the text or by their underlined appearance. Your cursor will show you external links when you move over such a link. Only when you click on an external link will your personal data be transferred to the destination of the link. The operator of the other website receives in particular your IP address, the time at which you clicked the link, the page on which you clicked the link, and other information that you can find in the data protection information of the respective provider.

Please also note that individual links can lead to data transfer outside the European Economic Area. This could give foreign authorities access to your data. You may not have any legal recourse against these data accesses. If you do not want your personal data to be transferred to the link target or even be exposed to unauthorized access by foreign authorities, please do not click on any links.

Rights of the data subject
As a data subject within the meaning of the GDPR, you have the opportunity to assert various rights. The data subject rights resulting from the GDPR are the right of access (Article 15), the right to rectification (Article 16), the right to erasure (Article 17), the right to restriction of processing (Article 18), the right to object (Article 21) , the right to complain to a supervisory authority and the right to data portability (Article 20).

Rights of the data subject
As a data subject within the meaning of the GDPR, you have the opportunity to assert various rights. The data subject rights resulting from the GDPR are the right of access (Article 15), the right to rectification (Article 16), the right to erasure (Article 17), the right to restriction of processing (Article 18), the right to object (Article 21) , the right to complain to a supervisory authority and the right to data portability (Article 20).

Right of withdrawal:

Some data processing can only take place with your express consent. You have the option to revoke your consent at any time. However, this does not affect the lawfulness of data processing until revocation.

Right to object:

If the processing is based on Article 6 paragraph 1 lit. e or f GDPR, you as the data subject can object to the processing of personal data concerning you at any time for reasons arising from your particular situation. You also have this right in the case of profiling based on these provisions within the meaning of Art. 4 Z 4 GDPR. Unless we can demonstrate a legitimate interest for the processing which outweighs your interests, rights and freedoms or the processing serves to assert, exercise or defend legal claims, we will refrain from processing your data after you have objected.

If the processing of personal data serves the purpose of direct advertising, you also have the right to object at any time. The same applies to profiling, which is associated with direct advertising. Here, too, we will no longer process personal data as soon as you object.

Right to complain to a supervisory authority:

If you believe that the processing of personal data concerning you violates the GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the member state of your place of residence, your place of work or the place of the alleged violation, without prejudice to any other administrative or judicial remedy violation, too.

Right to data portability:

If your data is processed automatically based on consent or fulfillment of a contract, you have the right to receive this data in a structured, common and machine-readable format. You also have the right to request that the data be transferred and made available to another person responsible, as long as this is technically feasible.

Right to information, correction and deletion:

You have the right to receive information about your processed personal data regarding the purpose of data processing, the categories, the recipients and the duration of storage. If you have any questions about this topic or other topics relating to personal data, you can of course contact us using the contact options provided in the legal notice.

Right to restriction of processing:

You can request the restriction of the processing of your personal data at any time. To do this, you must meet one of the following requirements:

You dispute the accuracy of the personal data. For the duration of the accuracy check, you have the right to request that processing be restricted.
If processing takes place unlawfully, you can request that the use of the data be restricted as an alternative to deletion.
If we no longer need your personal data for the purposes of processing, but you need the data to assert, exercise or defend legal claims, you can request restriction of processing as an alternative to deletion.
If you object to the processing in accordance with Article 21 Para. 1 GDPR, your interests and ours will be weighed up. Until this consideration has been taken, you have the right to request that processing be restricted.
Restricting processing means that, apart from storage, the personal data will only be used with your consent or for the purpose of asserting, exercising or defending legal claims or protecting the rights of another natural or legal person or for important public reasons may be processed in the interest of the Union or a Member State.

Provision of the website (web host)
Our website is hosted at:

Shopify International Ltd.
2nd Floor 1â2 Victoria Buildings, Haddington Road, Dublin 4, D04 XN32
Ireland

The server location is Canada.

When you access our website, we automatically collect and store information in so-called server log files. Your browser automatically transmits this information to our server or to the server of our hosting company.

These are:

IP address of the website visitor’s device
Device used
Host name of the accessing computer
Visitor's operating system
Browser type and version
Name of the retrieved file
Time of server request
Amount of data
Information as to whether the data retrieval was successful
This data is not merged with other data sources.

Instead of operating this website on our own server, we can also have it operated on the server of an external service provider (hosting company), which we have mentioned above in this case. The personal data collected by this website is then stored on the hosting company's servers. In addition to the data mentioned above, the web host also stores for us, for example, contact requests, contact details, names, website access data, meta and communication data, contract data and other data that is generated via a website.

The legal basis for the processing of this data is Article 6 Paragraph 1 Letter f GDPR. Our legitimate interest is the technically error-free presentation and optimization of this website. If the website is accessed in order to enter into contract negotiations with us or to conclude a contract, this serves as an additional legal basis (Art. 6 Para. 1 lit. b GDPR). If we have commissioned a hosting company, there is a contract for order processing with this service provider.

Use of local storage items, session storage items and cookies
Our website uses local storage items, session storage items and/or cookies. Local storage is a mechanism that enables data to be stored within the browser on your device. This data usually includes user preferences, such as whether a website is in “day” or “night” mode, and is retained until you manually delete the data. Session storage is very similar to local storage, whereas the storage duration only lasts during the current session, i.e. until the current tab is closed. The session storage items will then be deleted from your device. Cookies are information that a web server (server that provides web content) stores on your device in order to be able to identify this device. They are either temporarily deleted for the duration of a session (session cookies) and after you have finished visiting a website, or stored permanently (permanent cookies) on your device until you delete them yourself or they are automatically deleted by your web browser.

These objects can also be stored on your device by third-party companies when you enter our site (third-party requests). This enables us as the operator and you as a visitor to this website to use certain services from third parties that are installed on this website. Examples of this include processing payment services or displaying videos.

These mechanisms have a wide range of possible uses. They can improve the functionality of a website, control shopping cart functions, increase the security and comfort of website use and carry out analyzes of visitor flows and behavior. Depending on the individual functions, these must be classified under data protection law. If they are necessary for the operation of the website and are intended to provide certain functions (shopping cart function) or are used to optimize the website (e.g. cookies to measure visitor behavior), then they are used on the basis of Art. 6 Para. 1 lit. f GDPR. As a website operator, we have a legitimate interest in storing local storage items, session storage items and cookies in order to provide our services in a technically error-free and optimized manner. In all other cases, local storage items, session storage items and cookies will only be stored with your express consent (Art. 6 Para. 1 lit. a GDPR).

If local storage items, session storage or cookies are used by third-party companies or for analysis purposes, we will inform you about this separately in this data protection notice. Your required consent will be requested and can be revoked at any time.

Use of external services
External services are used on our website. External services are third-party services that are used on our website. This can be done for various reasons, such as embedding videos or website security. When you use these services, personal data is also passed on to the respective providers of these external services. If we have no legitimate interest in using these services, we will obtain your consent as a visitor to our website, which can be revoked at any time, before using them (Art. 6 Para. 1 lit. a GDPR).

Analytics
To analyze user behavior, we process personal data of website visitors. By evaluating the data obtained, we are able to compile information about the use of the individual components of our website. This allows us to increase the user-friendliness of our website. The analysis tools used could be used, for example, to create user profiles for the display of targeted or interest-based advertising messages, to recognize our website visitors the next time they visit our website, to measure their click/scroll behavior and their downloads, to create heatmaps, to recognize page views, to measure the duration of the visit or the bounce rates, as well as the origin of the website visitors (city, country, which site the visitor comes from) can be traced. With the help of the analysis tools, our market research and marketing activities can be improved.

Processing will only occur if you consent to this data processing (via our consent banner on the website). The legal basis for this processing is consent (Art. 6 Para. 1 lit. a GDPR). Without your consent, data processing will not take place in the manner described above. If you revoke your consent (e.g. via the consent banner or other options provided on this website), we will stop this data processing. The lawfulness of the processing carried out until the revocation remains unaffected.

Shopify Analytics

We use the Shopify Analytics service on our website. The service provider is Shopify International Ltd., 2nd Floor 1â2 Victoria Buildings, Haddington Road, Dublin 4, D04 XN32, Ireland.

Using the service may result in data being transferred to a third country (Canada). The European Commission has confirmed an adequate level of data protection for the country through an adequacy decision.

Further information can be found in the provider's data protection information at the following URL: https://www.shopify.com/legal/privacy?shpxid=1c1444d0-C70E-43BB-AD1E-BB3774A7C8C0.

The service uses the following cookies on our website:

Name Storage period Type Purpose
_tracking_consent 365 days 1st-party cookie
This cookie is used to store a user's preferences if a merchant has established privacy rules in the visitor's region.

Chat tool
You can send us messages via our website using an online chat tool. This function is made available to us by an external provider. If you actively use this chat, your IP address will be recorded by us and by the provider we commissioned. Using this system on our website gives us the opportunity to answer your inquiries more quickly.

Processing will only occur if you consent to this data processing (via our consent banner on the website). The legal basis for this processing is consent (Art. 6 Para. 1 lit. a GDPR). Without your consent, data processing will not take place in the manner described above. If you revoke your consent (e.g. via the consent banner or other options provided on this website), we will stop this data processing. The lawfulness of the processing carried out until the revocation remains unaffected.

Tidio chatbot

We use the Tidio Chatbot service on our website. The service provider is Tidio Poland Sp. z o.o., 81 Wojska Polskiego Street 70-481, Szczecin, Poland.

Using the service may result in data being transferred to a third country (USA). The provider is in accordance with EU-U.S. Data Privacy Framework certified and therefore offers an appropriate level of data protection.

Further information can be found in the provider's data protection information at the following URL: https://www.tidio.com/privacy-policy/.

Consent management
In order to comply with data protection requirements, we use a consent management tool on our website. With this tool we obtain the necessary consent for the setting of cookies or the use of external services. The consents are saved.

The processing is necessary for the fulfillment of a legal obligation to which the controller (operator of the website) is subject. The legal basis for processing is Article 6 (1) (c) GDPR.

GDPR legal cookies

We use the GDPR Legal Cookie service on our website. The service provider is beeclever GmbH, Universitätsstraße 3, 56070 Koblenz, Germany.

Further information can be found in the provider's data protection information at the following URL: https://gdpr-legal-cookie.myshopify.com/pages/datenschutzerklarung.

Content Delivery Network (CDN)
We use a Content Delivery Network (CDN) to optimize the performance and availability of our website. For this purpose, the service provider who provides this network processes your IP address and the information about when you visited our website. All further information about data processing by this service provider can be found in its data protection information.

We base this processing on a legitimate interest (Art. 6 Para. 1 lit. f GDPR).

Our legitimate interest in using a content delivery network is to be able to display our website as quickly, securely and reliably as possible.

Facebook CDN

We use the Facebook CDN service on our website. The service provider is Meta Platform Ireland Limited (Marketplace), 4 Grand Canal Square Grand Canal Harbor Dublin 2, Ireland.

Using the service may result in data being transferred to a third country (USA). The provider is in accordance with EU-U.S. Data Privacy Framework certified and therefore offers an appropriate level of data protection.

Further information can be found in the provider's data protection information at the following URL: https://de-de.facebook.com/policy.php.

Google APIs CDN

We use the Google APIs CDN service on our website. The service provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Using the service may result in data being transferred to a third country (USA). The provider is in accordance with EU-U.S. Data Privacy Framework certified and therefore offers an appropriate level of data protection.

Further information can be found in the provider's data protection information at the following URL: https://policies.google.com/privacy.

Newsletter tools
As part of our marketing, we offer you the opportunity to receive our newsletter via our website. To order the newsletter, you go through a registration process during which we check whether you are the owner of the email address provided and whether you agree to receive our newsletter. The data remains with us or with the newsletter service commissioned by us for the period from your voluntary registration until you unsubscribe from the newsletter. If you unsubscribe from the newsletter, you will be deleted from the distribution list. This list is not merged with other data. However, deleting newsletter subscriptions does not mean that data stored for other purposes (e.g. customer accounts) will also be deleted.

Processing will only occur if you consent to this data processing (via our consent banner on the website). The legal basis for this processing is consent (Art. 6 Para. 1 lit. a GDPR). Without your consent, data processing will not take place in the manner described above. If you revoke your consent (e.g. via the consent banner or other options provided on this website), we will stop this data processing. The lawfulness of the processing carried out until the revocation remains unaffected.

Mailchimp newsletter tool

We use the Mailchimp newsletter tool service on our website. The service provider is Intuit France SAS, 7 rue de la Paix 75002 Paris, France.

Using the service may result in data being transferred to a third country (USA). The provider is in accordance with EU-U.S. Data Privacy Framework certified and therefore offers an appropriate level of data protection.

Further information can be found in the provider's data protection information at the following URL: https://www.intuit.com/privacy/statement/.

Video/Music Service
Audio and videos are integrated into our website. These are retrieved from our provider’s server, the so-called audio or video platform. In order to be able to play an audio or video, your device connects to the audio or video platform and transmits personal data to it. This includes in particular the IP address, any location data or information about the user's browser and device.

Processing will only occur if you consent to this data processing (via our consent banner on the website). The legal basis for this processing is consent (Art. 6 Para. 1 lit. a GDPR). Without your consent, data processing will not take place in the manner described above. If you revoke your consent (e.g. via the consent banner or other options provided on this website), we will stop this data processing. The lawfulness of the processing carried out until the revocation remains unaffected.

YouTube

We use the YouTube service on our website. The service provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Using the service may result in data being transferred to a third country (USA). The provider is in accordance with EU-U.S. Data Privacy Framework certified and therefore offers an appropriate level of data protection.

Further information can be found in the provider's data protection information at the following URL: https://policies.google.com/privacy.

Webshop
We offer you our products and/or services via our webshop. As part of the sale of products and/or services, we collect, process and use your personal data (e.g. your name, your contact details, but also access times, device information or your IP address) to process the purchase and payment process.

We base this processing on a legitimate interest (Art. 6 Para. 1 lit. f GDPR).

Our legitimate interest lies in the error-free presentation and optimization of our web shop.

Shopify

We use the Shopify service on our website. The service provider is Shopify International Ltd., 2nd Floor 1â2 Victoria Buildings, Haddington Road, Dublin 4, D04 XN32, Ireland.

Since this service is hosted locally on the web server, no data is transferred to third parties.

The service uses the following cookies on our website:

Name Storage period Type Purpose
_secure_session_id 30 day 1st-party cookie
This cookie is used to track a user's session during the multi-step checkout process and to store their order, payment and shipping details.

cart_currency 14 day 1st-party cookie
This cookie is set after a checkout is completed to ensure that new shopping carts have the same currency as the last checkout.