phone(+358) 029 123 0800
mailinfo@holmen.coffee
personMy Account
enEnglish
fiSuomideDeutsch
search
shopping_bag
Product has been added to your cart.
The Roastery team is on well deserved Summer vacay 11.-22.7.2022! Your orders will be registered, but processed slower than usual. Enjoy the Summer!

Privacy Policy

Privacy Policy

1) Information on the collection of personal data and contact details of the responsible person

1.1 We are pleased that you are visiting our website and thank you for your interest. In the following, we inform you about the handling of your personal data when using our website. In this context, personal data is all data with which you can be personally identified.

1.2 The controller of data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is Holmen Coffee Oy, Pullttitie 16 B, 00880 Helsinki, Finland, tel: 029 123 0800, email: info@holmen.coffee. The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.

1.3 This website uses SSL or TLS encryption for security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or enquiries to the controller). You can recognise an encrypted connection by the string “https://” and the lock symbol in your browser line.

2) Data collection when visiting our website

When you use our website for information purposes only, i.e. if you do not register or otherwise transmit information to us, we only collect the data that your browser transmits to our server (so-called “server log files”). When you visit our website, we collect the following data, which is technically necessary for us to display the website to you:

  • Our visited website
  • Date and time at the time of access
  • Amount of data sent in bytes
  • Source/reference from which you reached the page
  • Browser used
  • Operating system used
  • IP address used (if applicable: in anonymised form)

The processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate interest in improving the stability and functionality of our website. The data is not passed on or used in any other way. However, we reserve the right to check the server log files retrospectively if there are concrete indications of illegal use.

3) Cookies

In order to make visiting our website more attractive and to enable the use of certain functions, we use so-called cookies on various pages. These are small text files that are stored on your terminal device. Some of the cookies we use are deleted after the end of the browser session, i.e. after you close your browser (so-called session cookies). Other cookies remain on your end device and enable your browser to be recognised the next time you visit (so-called persistent cookies). If cookies are set, they collect and process certain user information such as browser and location data and IP address values to an individual extent. Persistent cookies are automatically deleted after a specified period of time, which may differ depending on the cookie. The duration of the respective cookie storage can be found in the overview of the cookie settings of your web browser.

In some cases, cookies are used to simplify the ordering process by storing settings (e.g. remembering the contents of a virtual shopping basket for a later visit to the website). If personal data is also processed by individual cookies used by us, the processing is carried out in accordance with Art. 6 para. 1 lit. b GDPR either for the performance of the contract, in accordance with Art. 6 para. 1 lit. a GDPR in the case of consent given or in accordance with Art. 6 para. 1 lit. f GDPR to protect our legitimate interests in the best possible functionality of the website as well as a customer-friendly and effective design of the page visit.

Please note that you can set your browser in such a way that you are informed about the setting of cookies and can decide individually about their acceptance or can exclude the acceptance of cookies for certain cases or in general. Each browser differs in the way it manages cookie settings. This is described in the help menu of each browser, which explains how you can change your cookie settings. You can find these for the respective browsers under the following links:

Internet Explorer: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies

Firefox: https://support.mozilla.org/en-US/products/firefox/protect-your-privacy

Chrome: https://support.google.com/chrome/answer/95647?hl=en&hlrm=en

Safari: https://support.apple.com/en-en/guide/safari/sfri11471/mac

Opera: https://help.opera.com/en/latest/web-preferences/#cookies

Please note that if you do not accept cookies, the functionality of our website may be limited.

4) Contacting us

When contacting us (e.g. via contact form or e-mail), personal data is collected. Which data is collected when using a contact form can be seen from the respective contact form. This data is stored and used exclusively for the purpose of answering your request or for contacting you and the associated technical administration. The legal basis for processing this data is our legitimate interest in responding to your request in accordance with Art. 6 Para. 1 lit. f GDPR. If your contact aims at the conclusion of a contract, the additional legal basis for the processing is Art. 6 (1) lit. b GDPR. Your data will be deleted after your request has been processed. This is the case when the circumstances indicate that the matter in question has been conclusively clarified and provided that there are no statutory retention obligations to the contrary.

5) Data processing when opening a customer account and for the execution of a contract

Pursuant to Art. 6 para. 1 lit. b GDPR, personal data will continue to be collected and processed if you provide it to us for the execution of a contract or when opening a customer account. Which data is collected can be seen from the respective input forms. Deletion of your customer account is possible at any time and can be done by sending a message to the above address of the person responsible. We store and use the data provided by you for the purpose of processing the contract. After complete processing of the contract or deletion of your customer account, your data will be blocked with regard to tax and commercial law retention periods and deleted after expiry of these periods, unless you have expressly consented to a further use of your data or a legally permitted further use of data has been reserved on our part.

6) Use of customer data for direct marketing purposes

6.1 Registration for our e-mail newsletter

If you register for our e-mail newsletter, we will regularly send you information about our offers. The only mandatory data for sending the newsletter is your e-mail address. The provision of further data is voluntary and will be used to address you personally. We use the so-called double opt-in procedure for sending the newsletter. This means that we will only send you an e-mail newsletter once you have expressly confirmed that you consent to receiving newsletters. We will then send you a confirmation e-mail asking you to confirm that you wish to receive the newsletter in future by clicking on an appropriate link.

By activating the confirmation link, you give us your consent for the use of your personal data in accordance with Art. 6 Para. 1 lit. a GDPR. When you register for the newsletter, we store your IP address entered by your Internet service provider (ISP) as well as the date and time of registration in order to be able to trace any possible misuse of your e-mail address at a later date. The data collected by us when you register for the newsletter is used exclusively for the purpose of addressing you in an advertising manner by way of the newsletter. You can unsubscribe from the newsletter at any time via the link provided for this purpose in the newsletter or by sending a corresponding message to the responsible person named at the beginning. After unsubscribing, your e-mail address will be deleted from our newsletter distribution list immediately, unless you have expressly consented to further use of your data or we reserve the right to use your data in a way that goes beyond this, which is permitted by law and about which we inform you in this declaration.

6.2 Sending the e-mail newsletter to existing customers

If you have provided us with your e-mail address when purchasing goods or services, we reserve the right to regularly send you e-mail offers for similar goods or services to those already purchased from our range. In accordance with Section 7 (3) of the German Unfair Competition Act (UWG), we do not need to obtain your separate consent for this. In this respect, the data processing is carried out solely on the basis of our legitimate interest in personalised direct advertising in accordance with Art. 6 Para. 1 lit. f GDPR. If you have initially objected to the use of your e-mail address for this purpose, we will not send you any e-mails. You are entitled to object to the use of your e-mail address for the aforementioned advertising purpose at any time with effect for the future by notifying the responsible person named at the beginning. This will only incur transmission costs for you according to the basic rates. After receipt of your objection, the use of your e-mail address for advertising purposes will cease immediately.

6.3 Advertising by letter post

On the basis of our legitimate interest in personalised direct advertising, we reserve the right to store your first and last name, your postal address and – insofar as we have received this additional information from you within the framework of the contractual relationship – your title, academic degree, year of birth and your occupational, industry or business designation in accordance with Art. 6 Para. 1 lit. f GDPR and to use this information to send you interesting offers and information about our products by letter post.

You can object to the storage and use of your data for this purpose at any time by sending a message to the person responsible.

6.4 Goods availability notification by e-mail

If we offer the possibility in our online shop to inform you by e-mail about the time of availability for selected, temporarily unavailable articles, you can register for our e-mail notification service for the availability of goods. If you subscribe to our email availability notification service, we will send you a one-time email notification of the availability of the item you have selected. Only your e-mail address is required for sending this notification. The provision of further data is voluntary and may be used to address you personally. We use the so-called double opt-in procedure for sending this notification. This means that we will only send you a corresponding notification once you have expressly confirmed that you consent to receiving such a message. We will then send you a confirmation e-mail asking you to confirm that you wish to receive such a notification by clicking on a corresponding link.

By activating the confirmation link, you give us your consent for the use of your personal data in accordance with Art. 6 para. 1 lit. a GDPR. When you register for our e-mail notification service regarding the availability of goods, we store your IP address entered by your Internet service provider (ISP) as well as the date and time of registration in order to be able to trace any possible misuse of your e-mail address at a later date. The data we collect when you register for our goods availability e-mail notification service is used solely for the purpose of informing you about the availability of a particular item in our online shop. You can unsubscribe from the goods availability e-mail notification service at any time by sending a message to the responsible person named at the beginning. After unsubscribing, your e-mail address will be deleted immediately from our mailing list set up for this purpose, unless you have expressly consented to further use of your data or we reserve the right to use your data in a way that goes beyond this, which is permitted by law and about which we inform you in this declaration.

7) Data processing for order handling

7.1 In order to process your order, we work together with the service provider(s) listed below, who support us in whole or in part in the execution of concluded contracts. Certain personal data will be transmitted to these service providers in accordance with the following information.

The personal data collected by us will be passed on to the transport company commissioned with the delivery as part of the contract processing, insofar as this is necessary for the delivery of the goods. We pass on your payment data to the commissioned credit institution within the framework of payment processing, insofar as this is necessary for payment processing. If payment service providers are used, we will inform you explicitly about this below. The legal basis for the transfer of data is Art. 6 Para. 1 lit. b GDPR.

7.2 Use of payment service providers (payment services)

The payment will be processed not by Holmen Coffee Oy but by Paytrail Oyj, which will collect your credit card data and the payment will also be made to Paytrail Oyj. Holmen Coffee Oy does not see or collects any credit card information. For any queries concerning your credit card processing you can contact them as follows:

Paytrail Oyj, Innova 2, Lutakonaukio 7, 40100 Jyväskylä, support@paytrail.com

– Masterpayment

When selecting the payment methods “direct debit” and/or “delivery on account” and/or “purchase by instalment” via Masterpayment, you will be asked to provide your personal data (first and last name, street, house number, postcode, town, date of birth, e-mail address, telephone number and, in the case of direct debit, the specified account details) during the ordering process. In order to safeguard our legitimate interest in determining the solvency of our customers, this data is forwarded by us to Masterpayment LTD, 483 Green Lanes, London, N13 4BS, United Kingdom (“Masterpayment”) for the purpose of a credit check in accordance with Art. 6 Para. 1 lit. f GDPR. Masterpayment checks whether the payment option selected by you can be granted with regard to payment and/or bad debt risks on the basis of the personal data provided by you and other data (such as shopping basket, invoice amount, order history, payment experience). In order to make a decision within the scope of the application check, identity and creditworthiness information from the following credit agencies may be included in addition to Masterpayment-internal criteria in accordance with Art. 6 Para. 1 lit. f GDPR:

– Creditreform Boniversum GmbH, Hellersbergstraße 11, D-41460 Neuss, Tel.: +49 (0)2131-109-501, Fax: -557.

– CRIF Bürgel GmbH, Friesenweg 4, House 12, 22763 Hamburg, Germany, Tel.: +49 (0)40-89803-0, Fax: -419

– SCHUFA Holding AG, Kormoranweg 5, D-65201 Wiesbaden, Tel.: +49 (0)611-9278-0, Fax: -109

The credit report may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they have their basis in a scientifically recognised mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data.

You may object to this processing of your data at any time by sending a message to the data controller or to Masterpayment. However, Masterpayment may still be entitled to process your personal data if this is necessary for the contractual processing of payments.

– Paypal

When paying via PayPal, credit card via PayPal, direct debit via PayPal or – if offered – “purchase on account” or “payment by instalments” via PayPal, we pass on your payment data to PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter “PayPal”) as part of the payment processing. The transfer takes place in accordance with Art. 6 Para. 1 lit. b GDPR and only insofar as this is necessary for the payment processing.

For the payment methods credit card via PayPal, direct debit via PayPal or – if offered – “purchase on account” or “payment by instalments” via PayPal, PayPal reserves the right to carry out a credit check. For this purpose, your payment data may be passed on to credit agencies in accordance with Art. 6 Para. 1 lit. f GDPR on the basis of PayPal’s legitimate interest in determining your solvency. PayPal uses the result of the credit check in terms of the statistical probability of non-payment for the purpose of deciding on the provision of the respective payment method. The creditworthiness information may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they have their basis in a scientifically recognised mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data. For further information on data protection law, including information on the credit agencies used, please refer to PayPal’s data protection declaration: https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data if this is necessary for the contractual processing of payments.

8) Contacting the rating reminder

Own rating reminder (not sent by a customer rating system)

We use your e-mail address for a one-time reminder to submit a rating of your order for the rating system we use, provided that you have given us your express consent to do so during or after your order in accordance with Art. 6 (1) lit. a GDPR.

You can revoke your consent at any time by sending a message to the data controller.

9) Use of social media: social plugins

9.1 Facebook plugins with Shariff solution

Our website uses so-called social plugins (“plugins”) of the social network Facebook, which is operated by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”).

In order to increase the protection of your data when visiting our website, these buttons are not fully integrated into the page as plugins, but only using an HTML link. This type of integration ensures that when you call up a page of our website that contains such buttons, no connection is yet established with Facebook’s servers. When you click on the button, a new browser window opens and calls up the Facebook page where you can interact with the plugins there (if necessary after entering your login data).

For the purpose and scope of the data collection and the further processing and use of the data by Facebook, as well as your rights in this regard and setting options for protecting your privacy, please refer to Facebook’s privacy policy: https://www.facebook.com/policy.php.

9.2 Instagram plugin as Shariff solution

Our website uses so-called social plugins (“plugins”) of the online service Instagram, which is operated by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland (“Facebook”).

In order to increase the protection of your data when visiting our website, these buttons are not fully integrated into the page as plugins, but only using an HTML link. This type of integration ensures that when you call up a page of our website that contains such buttons, no connection is yet established with the servers of Instagram. When you click on the button, a new browser window opens and calls up the Instagram page, where you can interact with the plugins there (possibly after entering your login data).

For the purpose and scope of the data collection and the further processing and use of the data by Instagram, as well as your rights in this regard and setting options for protecting your privacy, please refer to Instagram’s privacy policy: https://help.instagram.com/155833707900388/.

9.3 Pinterest plugin as Shariff solution

On the Seller’s pages, so-called social plugins (“plugins”) of the social network Pinterest are used, which is operated by Pinterest Europe Ltd, Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland (“Pinterest”).

In order to increase the protection of your data when visiting our website, these buttons are not fully integrated into the page as plugins, but only using an HTML link. This type of integration ensures that when you call up a page of our website that contains such buttons, no connection is yet established with the servers of Pinterest. When you click on the button, a new browser window opens and calls up the Pinterest page, on which you can interact with the plugins there (if necessary, after entering your login data).

For the purpose and scope of the data collection and the further processing and use of the data by Pinterest, as well as your rights in this regard and setting options for protecting your privacy, please refer to the Pinterest data protection information: https://about.pinterest.com/de/privacy-policy

10) Use of social media: videos

Use of Youtube videos

This website uses the Youtube embedding function to display and play videos from the provider “Youtube”, which belongs to Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”).

The extended data protection mode is used here, which, according to the provider, only triggers the storage of user information when the video(s) is/are played. If the playback of embedded Youtube videos is started, the provider “Youtube” uses cookies to collect information about user behaviour. According to information from “Youtube”, these are used, among other things, to collect video statistics, to improve user-friendliness and to prevent abusive behaviour. If you are logged in to Google, your data will be directly assigned to your account when you click on a video. If you do not wish to have your data associated with your YouTube profile, you must log out before activating the button. Google stores your data (even for users who are not logged in) as usage profiles and evaluates them. Such an evaluation is carried out in particular in accordance with Art. 6 para. 1 lit. f GDPR on the basis of Google’s legitimate interests in the display of personalised advertising, market research and/or needs-based design of its website. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right. The use of YouTube may also result in the transmission of personal data to the servers of Google LLC. in the USA.

Independently of a playback of the embedded videos, a connection to the Google network is established each time this website is called up, which may trigger further data processing operations without our influence.

Further information on data protection at “Youtube” can be found in the Youtube terms of use at https://www.youtube.com/static?template=terms and in Google’s data protection declaration at https://www.google.de/intl/de/policies/privacy.

As far as legally required, we have obtained your consent for the processing of your data as described above in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future. To exercise your revocation, deactivate this service in the “Cookie Consent Tool” provided on the website.

11) Online marketing

11.1 Facebook Pixel for the creation of Custom Audiences with extended data matching (with cookie consent tool)

Within our online offer, the so-called “Facebook Pixel” of the social network Facebook is used in the mode of extended data matching, which is operated by Facebook Ireland Limited, 4 Grand Canal Quare, Dublin 2, Ireland (“Facebook”).

On the basis of the user’s express consent, when a user clicks on an advertisement played on Facebook and placed by us, an addition is added to the URL of our linked page by Facebook Pixel. After forwarding, this URL parameter is then inscribed in the user’s browser via a cookie, which our linked page sets itself. In addition, this cookie collects specific customer data, such as the email address, which we collect on our website linked to the Facebook ad during transactions such as purchase transactions, account logins or registrations (extended data matching). The cookie is then read by Facebook Pixel and enables the data, including the specific customer data, to be forwarded to Facebook.

With the help of the Facebook Pixel with extended data matching, it is possible for Facebook, on the one hand, to precisely determine the visitors to our online offer as a target group for the display of advertisements (so-called “Facebook Ads”). Accordingly, we use the Facebook pixel with advanced data matching to display the Facebook ads placed by us only to those Facebook users who have also shown an interest in our online offer or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited), which we transmit to Facebook (so-called “Custom Audiences”). With the help of the Facebook pixel with advanced data matching, we also want to ensure that our Facebook ads correspond to the potential interest of the users and do not have a harassing effect. This allows us to further evaluate the effectiveness of the Facebook ads for statistical and market research purposes by tracking whether users were redirected to our website after clicking on a Facebook ad (so-called “conversion”). Compared to the standard variant of Facebook Pixel, the extended data matching function helps us to better measure the effectiveness of our advertising campaigns by capturing more attributed conversions.

All transmitted data is stored and processed by Facebook, so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes, in accordance with the Facebook data usage policy (https://www.facebook.com/about/privacy/). The data may enable Facebook and its partners to serve ads on and off Facebook.

These processing operations will only be carried out if explicit consent is given in accordance with Art. 6 (1) lit. a GDPR.

Consent to the use of the Facebook Pixel may only be given by users who are older than 16 years of age. If you are younger, we ask you to ask your legal guardians for permission.

The information generated by Facebook is usually transmitted to a Facebook server and stored there; this may also involve transmission to the servers of Facebook Inc. in the USA. You can revoke your consent at any time with effect for the future. To exercise your revocation, remove the checkmark next to the setting for the “Facebook Pixel” in the “Cookie Consent Tool” integrated on the website.

11.2 Use of Google Ads conversion tracking

This website uses the online advertising programme “Google Ads” and, within the framework of Google Ads, the conversion tracking of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). We use Google Ads to draw attention to our attractive offers on external websites with the help of advertising media (so-called Google Adwords). We can determine how successful the individual advertising measures are in relation to the data of the advertising campaigns. Our aim is to show you advertising that is of interest to you, to make our website more interesting for you and to achieve a fair calculation of the advertising costs incurred.

The conversion tracking cookie is set when a user clicks on an ad placed by Google. Cookies are small text files that are stored on your end device. These cookies usually lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of this website and the cookie has not yet expired, Google and we can recognise that the user clicked on the ad and was redirected to this page. Each Google Ads customer receives a different cookie. Cookies cannot therefore be tracked across Google Ads clients’ websites. The information obtained using the conversion cookie is used to create conversion statistics for Google Ads customers who have opted in to conversion tracking. Clients learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information that personally identifies users. If you do not wish to participate in the tracking, you can block this use by deactivating the Google conversion tracking cookie via your internet browser under the keyword “User settings”. You will then not be included in the conversion tracking statistics. We use Google Ads based on our legitimate interest in targeted advertising pursuant to Art. 6 (1) lit. f GDPR. The use of Google Ads may also involve the transmission of personal data to the servers of Google LLC. in the USA.

You can obtain further information about Google’s data protection provisions at the following Internet address: https://www.google.de/policies/privacy/.

You can permanently object to the setting of cookies by Google Ads conversion tracking by downloading and installing the Google browser plug-in available at the following link:

https://www.google.com/settings/ads/plugin?hl=en

Please note that certain functions of this website may not be available or may only be available to a limited extent if you have deactivated the use of cookies.

As far as legally required, we have obtained your consent pursuant to Art. 6 (1) lit. a GDPR for the processing of your data as described above. You can revoke your consent at any time with effect for the future. To exercise your revocation, deactivate this service in the “Cookie Consent Tool” provided on the website or alternatively follow the option described above to make an objection.

12) Web analytics services

12.1 Google (Universal) Analytics

This website uses Google (Universal) Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). Google (Universal) Analytics uses “cookies”, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of the website (including your IP address) will be transmitted to and stored by Google on servers in the United States.

This website uses Google (Universal) Analytics exclusively with the extension “_anonymizeIp()”, which ensures anonymisation of the IP address by shortening it and excludes direct personal reference. The extension means that your IP address is shortened beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google LLC.server in the USA and shortened there. Google will use this information on our behalf for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage. In this context, the IP address transmitted by your browser as part of Google (Universal) Analytics will not be merged with other Google data.

Google Analytics also enables the creation of statistics with statements about the age, gender and interests of site visitors on the basis of an evaluation of interest-based advertising and with the inclusion of third-party information via a special function, the so-called “demographic characteristics”. This allows the definition and differentiation of user groups of the website for the purpose of the target group-optimised orientation of marketing measures. However, data records collected via the “demographic characteristics” cannot be assigned to a specific person.

All of the processing described above, in particular the setting of Google Analytics cookies for reading out information on the end device used, will only be carried out if you have given us your express consent to do so in accordance with Art. 6 Para. 1 lit. a GDPR. Without this consent, Google Analytics will not be used during your visit to the website.

You can revoke your consent at any time with effect for the future. To exercise your revocation, please deactivate this service in the “Cookie Consent Tool” provided on the website. We have concluded an order processing agreement with Google for the use of Google Analytics, which obliges Google to protect the data of our site visitors and not to pass it on to third parties.

For the transfer of data from the EU to the USA, Google refers to the so-called standard data protection clauses of the European Commission, which are intended to ensure compliance with the European level of data protection in the USA.

Further information on Google (Universal) Analytics can be found here: https://policies.google.com/privacy?hl=de&gl=de

12.2 Jetpack (formerly WordPress.com Stats)

This website uses the web analytics service Jetpack (formerly WordPress.com-Stats), which is operated by Automattic Inc, 60 29th Street #343, San Francisco, CA 94110-4929, USA, using tracking technology provided by Quantcast Inc, 201 3rd St, Floor 2, San Francisco, CA 94103-3153, USA. With the help of Jetpack, pseudonymised visitor data is collected, evaluated and stored on the basis of our legitimate interest in the statistical analysis of user behaviour for optimisation and marketing purposes in accordance with Art. 6 para. 1 lit. f GDPR. Pseudonymised user profiles can be created and evaluated from this data for the same purpose. Jetpack uses so-called cookies, i.e. small text files that are stored locally in the cache of the site visitor’s internet browser. These cookies are used, among other things, to recognise the browser and thus enable a more precise determination of the statistical data. The data of the user’s IP address is also collected, but it is pseudonymised immediately after collection and before storage in order to exclude the possibility of personal reference.

The information generated by the cookie about your use of this website (including the pseudonymised IP address) is transferred to a server in the USA and stored there in order to protect the interests mentioned above.

To object to the collection and storage of your visitor data in the future, you can download an opt-out cookie from Quantcast at the following link, which has the effect that no visitor data from your browser will be collected and stored by Jetpack in the future: https://www.quantcast.com/opt-out.

The opt-out cookie is set by Quantcast.

As far as legally required, we have obtained your consent for the processing of your data as described above in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future. In order to exercise your revocation, please follow the option described above for making an objection.

13) Retargeting/ Remarketing/ Referral advertising

Google Ads Remarketing

Our website uses the Google Ads Remarketing function to advertise this website in Google search results and on third-party websites. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). For this purpose, Google sets a cookie in the browser of your terminal device, which automatically enables interest-based advertising by means of a pseudonymous cookie ID and on the basis of the pages you visit. The processing is based on our legitimate interest in the optimal marketing of our website in accordance with Art. 6 para. 1 lit. f GDPR.

Further data processing will only take place if you have consented to Google linking your internet and app browsing history to your Google account and using information from your Google account to personalise the ads you see on the web. In this case, if you are logged into Google while visiting our website, Google will use your data together with Google Analytics data to create and define target group lists for cross-device remarketing. For this purpose, your personal data will be temporarily linked by Google with Google Analytics data in order to form target groups. In the context of the use of Google Ads Remarketing, personal data may also be transmitted to the servers of Google LLC. in the USA.

You can permanently object to the setting of cookies by Google Ads Remarketing by downloading and installing the Google browser plug-in available at the following link:

https://www.google.com/settings/ads/onweb/

Further information and the privacy policy regarding advertising and Google can be found here:

https://www.google.com/policies/technologies/ads/

As far as legally required, we have obtained your consent for the processing of your data as described above in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future. To exercise your revocation, deactivate this service in the “Cookie Consent Tool” provided on the website or alternatively follow the option described above for making an objection.

14) Tools and miscellaneous

14.1 Borlabs

This website uses the cookie consent tool Borlabs of the provider Mr. Benjamin A. Bornschein, Georg-Wilhelm-Str. 17, 21107 Hamburg (“Borlabs”), which sets two technically necessary cookies (“borlabsCookie” and “borlabsCookieUnblockContent”) to store your cookie preference. The aforementioned processing is carried out pursuant to Art. 6 (1) lit. f GDPR on the basis of our legitimate interest in providing cookie preference management for website visitors.

The “borlabs cookie” does not process any personal data. The “borlabsCookie” cookie stores your chosen preference, which you selected when you entered the website. The “borlabsCookieUnblockContent” cookie stores which (external) media/content you always want to have automatically unblocked. If you want to revoke these settings, simply delete the cookies in your browser. When you re-enter/reload the website, you will be asked again for your cookie preference.

14.2 Google reCAPTCHA

On this website we also use the reCAPTCHA function of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). This function is primarily used to distinguish whether an entry is made by a natural person or is abused by machine and automated processing. The service includes the sending of the IP address and, if applicable, further data required by Google for the reCAPTCHA service to Google and is carried out in accordance with Art. 6 para. 1 lit. f DSGVO on the basis of our legitimate interest in determining individual personal responsibility on the Internet and the prevention of abuse and spam. The use of Google reCAPTCHA may also involve the transmission of personal data to the servers of Google LLC. in the USA.

Further information on Google reCAPTCHA and Google’s data protection declaration can be found at: https://www.google.com/intl/de/policies/privacy/.

Insofar as legally required, we have obtained your consent for the processing of your data as described above in accordance with Art. 6 Para. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future. In order to exercise your revocation, please follow the option described above for making an objection.

14.3 Google Customer Reviews (formerly Google Certified Merchant Programme)

We work with Google as part of the “Google Customer Reviews” programme. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). This programme gives us the opportunity to collect customer reviews from users of our website. This involves asking you, after you have made a purchase on our website, whether you would like to take part in an email survey from Google. If you give your consent in accordance with Art. 6 para. 1 lit. a GDPR, we will transmit your email address to Google. 

You will receive an email from Google Customer Reviews asking you to rate the purchase experience on our website. The rating you provide will then be aggregated with our other ratings and displayed in our Google Customer Reviews logo and in our Merchant Center dashboard. In addition, your review will be used for Google Seller Reviews. The use of Google Customer Reviews may also involve the transmission of personal data to the servers of Google LLC. in the USA.

You can revoke your consent at any time by sending a message to the data controller or to Google.

Further information on Google’s data protection in connection with the Google Customer Reviews programme can be found at the following link: 

https://support.google.com/merchants/answer/7188525?hl=de.

For more information on the privacy of Google Seller Reviews, please see this link: 

https://support.google.com/google-ads/answer/2375474

15) Rights of the data subject

15.1 The applicable data protection law grants you comprehensive data subject rights (rights of access and intervention) vis-à-vis the controller with regard to the processing of your personal data, which we inform you about below:

  • Right of access pursuant to Art. 15 GDPR: In particular, you have the right to obtain information about your personal data processed by us, the processing purposes, the categories of personal data processed, the recipients or categories of recipients to whom your data have been or will be disclosed, the intended storage period or the criteria for determining the storage period, the existence of a right to rectification, erasure, restriction of processing, objection to processing, complaint to a supervisory authority, the origin of your data if it has not been collected from you by us, the existence of automated decision-making including profiling and, if applicable, meaningful information about the logic involved and the scope and the intended effects of such processing concerning you, as well as your right to be informed about which guarantees exist in accordance with Art. 46 GDPR in case of transfer of your data to third countries;
  • Right to rectification pursuant to Art. 16 of the GDPR: You have the right to have any inaccurate data relating to you rectified without delay and/or to have any incomplete data stored by us completed;
  • Right to deletion pursuant to Art. 17 GDPR: You have the right to demand the deletion of your personal data if the requirements of Art. 17 (1) GDPR are met. However, this right does not exist in particular if the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the assertion, exercise or defence of legal claims;
  • Right to restriction of processing pursuant to Art. 18 of the GDPR: You have the right to request the restriction of the processing of your personal data as long as the accuracy of your data, which you dispute, is being verified; if you refuse the erasure of your data due to unlawful data processing and instead request the restriction of the processing of your data; if you require your data for the assertion, exercise or defence of legal claims after we no longer need this data after the purpose has been achieved; or if you have lodged an objection for reasons relating to your particular situation as long as it has not yet been determined whether our legitimate grounds prevail;
  • Right to information pursuant to Art. 19 GDPR: If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to inform all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort. You have the right to be informed about these recipients.
  • Right to data portability pursuant to Art. 20 GDPR: You have the right to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller, insofar as this is technically feasible;
  • Right to revoke consent given in accordance with Art. 7 (3) GDPR: You have the right to revoke consent to the processing of data once given at any time with effect for the future. In the event of revocation, we will immediately delete the data concerned unless further processing can be based on a legal basis for processing without consent. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation;
  • Right to lodge a complaint pursuant to Art. 77 GDPR: If you consider that the processing of personal data concerning you infringes the GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, workplace or the place of the alleged infringement, without prejudice to any other administrative or judicial remedy.

15.2 RIGHT OF OBJECTION

IF WE PROCESS YOUR PERSONAL DATA WITHIN THE FRAMEWORK OF A BALANCING OF INTERESTS ON THE BASIS OF OUR OVERRIDING LEGITIMATE INTEREST, YOU HAVE THE RIGHT TO OBJECT TO THIS PROCESSING WITH EFFECT FOR THE FUTURE AT ANY TIME ON GROUNDS ARISING FROM YOUR PARTICULAR SITUATION.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE DATA CONCERNED. HOWEVER, WE RESERVE THE RIGHT TO CONTINUE PROCESSING IF WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, FUNDAMENTAL RIGHTS AND FREEDOMS, OR IF THE PROCESSING IS FOR THE PURPOSE OF ASSERTING, EXERCISING OR DEFENDING LEGAL CLAIMS.

IF WE PROCESS YOUR PERSONAL DATA FOR THE PURPOSES OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR THE PURPOSES OF SUCH MARKETING. YOU MAY EXERCISE THE RIGHT TO OBJECT AS DESCRIBED ABOVE.

IF YOU EXERCISE YOUR RIGHT TO OBJECT, WE WILL STOP PROCESSING THE DATA CONCERNED FOR DIRECT MARKETING PURPOSES.

16) Duration of storage of personal data

The duration of the storage of personal data is measured on the basis of the respective legal basis, the processing purpose and – if relevant – additionally on the basis of the respective statutory retention period (e.g. retention periods under commercial and tax law).

When processing personal data on the basis of explicit consent pursuant to Art. 6 para. 1 lit. a GDPR, this data is stored until the data subject revokes his/her consent.

If there are statutory retention periods for data that is processed within the scope of legal or quasi-legal obligations on the basis of Art. 6 Para. 1 lit. b GDPR, this data will be routinely deleted after expiry of the retention periods, insofar as it is no longer required for the fulfilment of a contract or the initiation of a contract and/or there is no further justified interest on our part in continuing to store it.

When processing personal data on the basis of Art. 6(1)(f) GDPR, such data shall be stored until the data subject exercises his/her right to object pursuant to Art. 21(1) GDPR, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims.

When processing personal data for the purpose of direct marketing on the basis of Art. 6(1)(f) GDPR, such data shall be stored until the data subject exercises his or her right to object pursuant to Art. 21(2) GDPR.

Unless otherwise stated in the other information in this declaration on specific processing situations, stored personal data will otherwise be deleted when it is no longer necessary for the purposes for which it was collected or otherwise processed.

Enjoy Holmen Coffee Products

Probably the best blend in the world – bad coffee sucks!

Shop now
Menu