Privacy Policy

• Responsible for the website is:
  NIRVAN JAVAN GMBH
  Peter-Debye-Weg 15
  CH-8049 Zurich
• Email: service@nirvanjavan.com
• Company Number: CH-020.4.056.139-1
• VAT Number: CHE-366.359.976

When you visit our website, our servers temporarily store each access in a log file. Without your intervention, the following data will be processed and stored by us until automatic deletion after 12 months at the latest:

• the IP address of the requesting computer
• the name of the owner of the IP address range (usually your Internet access provider)
• the date and time of access
• the website from which access was made (referrer URL), if applicable with the search term used
• the name and the URL of the retrieved file
• the status code (e.g. error message)
• the operating system of your computer
• the browser you use (type, version and language)
• the transmission protocol used (e.g. HTTP/1.1)
• Your user name from a registration/authentication

The data collected is only used for statistical analysis and to improve the website and is not linked to or stored with personal data. We reserve the right to subsequently check the log files if there are concrete indications of illegal use.

If you contact us using the contact form on the website, we collect the following data from you (mandatory *):

• Name*
• Surname*
• Email*
• Telephone*
• Subject*
• Message*

We use this data exclusively to answer the questions you ask or to provide the services you request.

In our online shop you can order as a guest or through your personal customer account. Certain services can only be obtained with a customer account.

If you register a customer account, we collect the following data from you (mandatory *):

• Email*
• Name*
• Surname*
• Birthday*
• Gender*

We collect this data in order to open and manage the customer account, to process your order(s) and to provide the requested services. You can view and change your data in your customer account at any time. In addition, you can request the complete deletion of your customer account by sending us a corresponding request or requesting the deletion directly in the customer account.

If you place an order as a guest, we collect the following data from you for the processing of your order (mandatory *):

• Email*
• Gender*
• Name*
• Surname*
• Address*
• Telephone*

We collect this data in order to process your order and provide the requested services.

For the processing of the purchase contract we collect the following data mandatory:

• Email*
• Gender*
• Name*
• Surname*
• Address*
• Telephone*
The provision of further data is voluntary. If you are registered and have a customer account, we will save your data for your next purchase.

In connection with your order and the requested services, we will process the following data if you have a customer account:

• Information about the ordered products
• Data on your ordering, purchasing and payment behaviour

Unless otherwise stated in this data protection declaration or unless you have given your separate consent, we will only use the aforementioned data to process the contract, namely to process your orders, deliver the ordered products and ensure correct payment.

On our website you have the possibility to subscribe to our newsletter. For this purpose a registration is required. Within the scope of registration we collect the following data from you (mandatory *):

• Name*
• Email*

After entering the above mentioned information you can trigger the registration for our newsletter. We use email marketing software from Campaign Monitor, 9 Lea Ave, Nashville, USA, to send the newsletter. The privacy policy can be found here: https://www.campaignmonitor.com/policies/
Our newsletter contains a so-called web beacon or similar technical means (tracking pixels). A web beacon is a 1×1 pixel, invisible graphic which is associated with the user ID of the respective newsletter subscriber. Through the web beacon we receive the following information about the newsletter dispatch:

• address file used
• Subject and number of newsletters sent
• Information about which addresses received or did not receive the newsletter and at which addresses the dispatch failed
• Information which addresses have opened the newsletter
• Information about which addresses have unsubscribed
• technical information (e.g. time of retrieval, IP address, browser type and operating system)

This information is used for statistical analysis of our newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients. The web beacon is deleted when you delete the newsletter.

To prevent the web beacon from being used, please set your mail program so that no HTML is displayed in messages, if this is not already the case by default. On the following pages you will find explanations of how to make this setting in the most common email programs.

• Microsoft Outlook
• Mail für Mac

By registering for the newsletter, you give us your consent to process the data provided for the regular dispatch of the newsletter to the address you have given us as well as for the statistical evaluation of the usage behaviour and the optimisation of the newsletter. You can revoke your consent at any time with effect for the future or click on the unsubscribe link in the newsletter emails.

We will only pass on your personal data if you have expressly consented to this, if there is a legal obligation to do so or if this is necessary to enforce our rights, in particular to enforce claims arising from the contractual relationship. In addition, we pass on your data to third parties as far as this is necessary within the scope of the use of the website and the execution of the contract. The use of the data passed on for this purpose by the third parties is strictly limited to the stated purposes.

We are also entitled to transfer your personal data to third companies abroad, in particular subsidiaries, if this is necessary within the scope of the processing purpose. In doing so, the legal regulations for the transfer of personal data to third parties will of course be observed. These third parties are obliged to the same extent as we ourselves to protect data. If the level of data protection in a country does not correspond to that in Switzerland, we will contractually ensure that the protection of your personal data is equivalent to that in Switzerland at all times.

For the sake of completeness, we would like to point out to users who are resident or domiciled in Switzerland that surveillance measures are in place in the USA by US authorities which generally allow the storage of all personal data of all persons whose data has been transferred from Switzerland to the USA. This is done without any differentiation, restriction or exception based on the objective pursued and without any objective criterion that would make it possible to limit access to the data by the US authorities and its subsequent use to very specific, strictly limited purposes that could justify the interference associated with both access to and use of the data. Furthermore, we would like to point out that there are no legal remedies available in the United States for data subjects from Switzerland that would allow them to gain access to the data concerning them and to obtain its correction or deletion, or that there is no effective judicial protection against general access rights of US authorities.

We would also like to point out to users resident in Switzerland that, from Switzerland’s point of view, the USA does not provide an adequate level of data protection, partly due to the issues mentioned in this section. Insofar as we have explained in this data protection declaration that recipients of data are based in the USA, we will ensure that your data is adequately protected at our partners’ premises, either by means of contractual agreements with these companies or by ensuring that these companies are certified under the Swiss-US Privacy Shield.

Cookies help in many ways to make your visit to our website easier, more pleasant and more meaningful. Cookies are information files that your web browser automatically stores on the memory of your terminal device when you visit our website. Cookies neither damage the memory of your terminal device nor do they transmit personal data from you to us.

We use cookies, for example, to temporarily save your selected services and entries when you fill out a form on the website so that you do not have to repeat the entry when you call up another subpage. Cookies may also be used to identify you as a registered user after you have registered on the website, so that you do not have to log in again when you access another subpage.

Most Internet browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your device or so that a message is always displayed when a new cookie is activated. On the following pages you will find explanations on how to configure cookies with the most common browsers:

• Microsoft Windows Internet Explorer
• Mozilla Firefox
• Google Chrome für Desktop
• Google Chrome für Mobile
• Apple Safari für Desktop

Disabling cookies may mean that you will not be able to use all the features of our website.

On our website, we use Google Analytics, a web analytics service provided by Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA, or Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Analytics uses methods that enable an analysis of the use of the website, such as cookies. The information generated by the cookie about your use of our website such as

• Navigation path followed by a visitor to the website
• Time spent on the website or a subpage
• the page on which you leave the website
• the country, region or city from where access is made
• End device (type, version, color depth, resolution, width and height of the browser window)
• Returning or new visitor
• Browser type/version
• Operating system in use
• Referrer URL (i.e. the previously visited website)
• Host name of the accessing computer (IP address)
• Time of the server request

are usually transferred to a Google server in the USA and stored there. The IP address is shortened by activating the IP anonymization (“anonymizeIP”) on this website before transmission within the member states of the European Union or in other signatory states of the Agreement on the European Economic Area or Switzerland. According to Google, the masked IP address transmitted by your browser within the scope of Google Analytics is not merged with other Google data. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there. In these cases, we ensure through contractual guarantees that Google maintains an adequate level of data protection.

The information is used to evaluate the use of the website, to compile reports on the activities on the website and to provide further services associated with the use of the website and the use of the Internet for the purposes of market research and the design of the website in line with requirements. This information may also be transferred to third parties if required by law or if third parties process this data on our behalf.

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can prevent the collection of data generated by the cookie and relating to your use of the website (including your IP address) from being sent to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de

On our website you will find links to social media networks. These are not plug-ins provided by the social media network, which already transmit data to the provider without user influence when the page is loaded. Behind the buttons to the social media networks there is only a link to our presence on the respective social media network. User data is not automatically transmitted to the social media network when the page is loaded.

The links lead to our appearances in the following networks:

• Facebook of Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland.
• Instagram of Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, USA.
• LinkedIn of LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Irland.
• Pinterest of Pinterest Inc, 651 Brannan Street, San Francisco, CA 94107, USA.
• Youtube of Youtube Llc, 901 Cherry Ave, San Bruno, USA.

When you click on a link to one of our social media profiles, a direct connection is established between your browser and the server of the social network concerned. This gives the network the information that you visited our website with your IP address and called up the link. If you link to a network while logged into your account on that network, the content on our site may be linked to your profile on the network, which means that the network can associate your visit to our site directly with your account. If you wish to prevent this, you should log out before clicking on any links. In any case, an assignment will take place when you log in to the relevant network after clicking on the link.

We use suitable and appropriate technical and organisational security measures to protect your personal data stored with us against manipulation, partial or complete loss and unauthorised access by third parties. Our security measures are continuously adapted and improved in line with technological developments.

You should always keep your access data confidential and close the browser window when you have finished communicating with us, especially if you share the terminal device with others.

We take internal company data protection very seriously. Our employees and the service companies we commission have been sworn to secrecy and to comply with the provisions of data protection law.

We only store personal data for as long as necessary to achieve the above-mentioned data processing purposes. Contract data will be stored by us for a longer period of time, as this is required by legal storage obligations. Such storage obligations result, among other things, from accounting regulations and from tax regulations. According to these regulations, business communication, concluded contracts and accounting vouchers must be stored for up to 10 years. If we no longer need this data for the performance of services for you, the data will be blocked. This means that the data may then only be used for very specific purposes, such as accounting and for tax purposes.

You can object to data processing at any time. You also have the following rights:

Right to information: You have the right to demand free access to your personal data stored with us at any time if we are processing it. This gives you the opportunity to check which personal data we process about you and that we use it in accordance with the applicable data protection regulations.

Right to correction: You have the right to have incorrect or incomplete personal data corrected and to be informed of the correction.

Right of deletion: You have the right to have your personal data deleted under certain circumstances. In individual cases, the right to deletion may be excluded.

Right to limit processing: You have the right, under certain conditions, to request that the processing of your personal data be limited.

Right of revocation: In principle, you have the right to revoke a given consent at any time with effect for the future. Processing activities based on your consent in the past will not become unlawful by your revocation.

If you have any questions regarding data protection on our website, would like to request information or request the deletion of your data, please contact us by sending an email to service@nirvanjavan.com.
You can send your request by letter to the following address:
NIRVAN JAVAN GMBH
Privacy Policy
Peter-Debye-Weg 15
CH-8049 Zurich
Last updated: 26.05.2020